openbsd/src/regress/lib/libssl/tlsext, branch OPENBSD_7_4A mirror of https://github.com/libressl/openbsd.git
https://git.lua4.win/openbsd/atom?h=OPENBSD_7_42023-07-05T17:30:14+00:00Avoid undefined behavior in tlsexttest2023-07-05T17:30:14+00:00tb2023-07-05T17:30:14+00:00urn:sha1:82dd34d70c585b4b99c4ddf5fae3480da08af357
An empty array cannot be initialized and it is an incomplete type, so the
sizeof() operator can't be applied to it. Therefore initialize it with a
zero byte and replace sizeof() use with lengths.
Slightly tweaked version of a patch by inoguchi in portable.
Discussed with bcook, beck, kettenis
tlsexttest: check additional logic in tlsext randomization2023-04-27T10:53:58+00:00tb2023-04-27T10:53:58+00:00urn:sha1:7e4f1618bbb0aff3c288e85be3ef058031f36db8
This verifies that we put PSK always last and that the Apache 2 special
does what it is supposed to do. There is also some weak validation of
the Fisher-Yates shuffle that will likely catch errors introduced in
tlsext_randomize_build_order()
Fix the client test and the tlsext test to work with randomized2023-04-23T18:59:41+00:00tb2023-04-23T18:59:41+00:00urn:sha1:13ba643374d5ff84130d05ec7c88f7fd1e4c2308
TLS extensions (this involves unrandomizing the extension order
for the tests that rely on golden numbers.
Make internal header file names consistent2022-11-26T16:08:57+00:00tb2022-11-26T16:08:57+00:00urn:sha1:81d98bf600a381a625eb11b39a725b08c0ba547f
Libcrypto currently has a mess of *_lcl.h, *_locl.h, and *_local.h names
used for internal headers. Move all these headers we inherited from
OpenSSL to *_local.h, reserving the name *_internal.h for our own code.
Similarly, move dtls_locl.h and ssl_locl.h to dtls_local and ssl_local.h.
constant_time_locl.h is moved to constant_time.h since it's special.
Adjust all .c files in libcrypto, libssl and regress.
The diff is mechanical with the exception of tls13_quic.c, where
#include <ssl_locl.h> was fixed manually.
discussed with jsing,
no objection bcook
tlsexttest.c: make various static structs const2022-10-21T14:58:53+00:00tb2022-10-21T14:58:53+00:00urn:sha1:6172b715052366b84ebd0b5addbaef70c201b59dquic tlsext tests: use byte vector in place of string2022-10-21T14:55:54+00:00tb2022-10-21T14:55:54+00:00urn:sha1:dd7e80fcb29ec48dced1a8092c323005e52ff1f0
While this doesn't actually change anything, it should appease Coverity.
CID 358678
CID 358679
Revise for SSL_CTX_INTERNAL and SSL_INTERNAL removal.2022-10-02T16:38:23+00:00jsing2022-10-02T16:38:23+00:00urn:sha1:41318db5497cddfa4935c4ea48bcb2eb5786375eRevise regress now that SSL_QUIC_METHOD exists.2022-08-21T19:46:19+00:00jsing2022-08-21T19:46:19+00:00urn:sha1:5029dbcd45ab75e17b8a0978a415cb015ca2d444fix error message2022-08-05T17:19:09+00:00tb2022-08-05T17:19:09+00:00urn:sha1:4f8fbb38b40bccdfd7a12640e2dd04b35e4e1133Use the FAIL macro instead of fprintf(stderr, "FAIL: ...\n");2022-08-05T17:12:32+00:00tb2022-08-05T17:12:32+00:00urn:sha1:26a19694dd6cd7d7c8216f885a110e4301148e26