From 99b5b4416193fafaa815746ea756900d2ab26917 Mon Sep 17 00:00:00 2001 From: Thomas Vanbesien Date: Wed, 18 Feb 2026 15:39:29 +0100 Subject: Make client/server encryption optional, rename tests to full names Make encryption optional for both ServerRegister's LDS client connection and the server side of ServerLDS/ServerRegister: when certificate, privateKey, and trustStore are omitted the programs run with SecurityPolicy#None only. Secure servers also add a discovery-only None endpoint so unencrypted clients can still call FindServers and GetEndpoints. Consolidate tests from 5 policy-specific cases (nosec_anon, none_user, basic256sha256_anon, aes256_anon, aes128_user) down to 3 that cover the important axes: unsecure_anonymous, secure_anonymous, secure_user. Rename directories to use full names. Auto-generate certificates and trust stores in run_test.sh. Update readme and CLAUDE.md to reflect the current program interface (unified Client binary, split ServerRegister configs) and the new test names. --- readme.md | 12 +++++------- 1 file changed, 5 insertions(+), 7 deletions(-) (limited to 'readme.md') diff --git a/readme.md b/readme.md index 8049944..a40d14b 100644 --- a/readme.md +++ b/readme.md @@ -107,17 +107,15 @@ All three programs accept an optional log level as the last argument ## Tests -Integration tests exercise five combinations of security and authentication: +Integration tests exercise three combinations of security and authentication: | Test | Security | Auth | |------|----------|------| -| `nosec_anon` | LDS + ServerRegister unsecured / None | anonymous | -| `none_user` | None | user/password | -| `basic256sha256_anon` | SignAndEncrypt / Basic256Sha256 | anonymous | -| `aes256_anon` | SignAndEncrypt / Aes256_Sha256_RsaPss | anonymous | -| `aes128_user` | SignAndEncrypt / Aes128_Sha256_RsaOaep | user/password | +| `unsecure_anonymous` | None / None | anonymous | +| `secure_anonymous` | SignAndEncrypt / Basic256Sha256 | anonymous | +| `secure_user` | SignAndEncrypt / Basic256Sha256 | user/password | -Run them: +Run all tests: ```sh ctest --test-dir build --output-on-failure -- cgit v1.2.3