summaryrefslogtreecommitdiffstats
path: root/tox.ini
diff options
context:
space:
mode:
authorDjLegolas <DjLegolas@users.noreply.github.com>2018-06-24 20:39:04 +0300
committerCalum Lind <calumlind+deluge@gmail.com>2018-09-06 19:14:13 +0100
commitb9a9e06c1d7a370aee87bdca2237eb79c7e7890f (patch)
treebb21452a2d535c20c4f669192e307febfe1350c3 /tox.ini
parent456e720b756c39408402410f2ad9d421c1a1b01b (diff)
downloaddeluge-b9a9e06c1d7a370aee87bdca2237eb79c7e7890f.tar.gz
deluge-b9a9e06c1d7a370aee87bdca2237eb79c7e7890f.tar.bz2
deluge-b9a9e06c1d7a370aee87bdca2237eb79c7e7890f.zip
[WebUI][Daemon] Enhance TLS Security
This applies the following for both WebUI and Daemon: 1. Raised minimal TLS version to TLSv1.2 2. Added specific cipher suite list 3. Added support for ECDSA auth keys 4. Added support for ECDHE key exchange algorithm We disabled the ability to perform TLS/SSL renegotiation and therefore will prevent the clients from renegotiating, which can be exploit for DoS attacks. New security tests now will be skipped when running `pydef` and `trial` testenvs. To run the test, use the testenv `security` or add the environment variable `SECURITY_TESTS` before running the tests. Also should only run when adding to the commit message the string `SECURITY_TEST`.
Diffstat (limited to 'tox.ini')
-rw-r--r--tox.ini6
1 files changed, 5 insertions, 1 deletions
diff --git a/tox.ini b/tox.ini
index aa3aa7ce9..176c6e0ab 100644
--- a/tox.ini
+++ b/tox.ini
@@ -52,7 +52,11 @@ log_cli_level = CRITICAL
[testenv:pydef]
commands =
python -c "import libtorrent as lt; print(lt.__version__)"
- pytest -v --basetemp=_pytest_temp -s -m "not (todo or gtkui)" deluge/tests
+ pytest -v --basetemp=_pytest_temp -s -m "not (todo or gtkui or security)" deluge/tests
+
+[testenv:security]
+setenv = SECURITY_TESTS = True
+commands = pytest -v --basetemp=_pytest_temp -s -m "security" deluge/tests/
[testenv:pygtkui]
commands = pytest -v --basetemp=_pytest_temp -s -m "gtkui" deluge/tests