summaryrefslogtreecommitdiff
path: root/src/regress/lib/libc/regex/debug.c (unfollow)
Commit message (Collapse)AuthorFilesLines
2020-10-11Unbreak regress following SRTP_PROTECTION_PROFILE const change.jsing1-2/+2
2020-10-11Constipate srtp_known_profiles, pushing it into .data.rel.roguenther3-17/+18
ok tb@ jsing@
2020-10-11Constipate ssl3_ciphers and tls1[23]_sigalgs*, pushing them intoguenther6-32/+32
.data.rel.ro and .rodata respectively. ok tb@ jsing@
2020-10-10Don't leak bundle_file and cert_file paths at the end.tb1-1/+3
2020-10-09Fix leak or double free with OCSP_request_add0_id()tb1-8/+9
On success, OCSP_request_add0_id() transfers ownership of cid to either 'one' or 'req' depending on whether the latter is NULL or not. On failure, the caller can't tell whether OCSP_ONEREQ_new() failed (in which case cid needs to be freed) or whether it was a failure to allocate memory in sk_insert() (in which case cid must not be freed). The caller is thus faced with the choice of leaving either a leak or a potential double free. Fix this by transferring ownership only at the end of the function. Found while reviewing an upcoming diff by beck. ok jsing
2020-10-09As noted by tb@ previous commit only removed an unused fucntion.otto1-4/+9
So redo previous commit properly: Use random value for canary bytes; ok tb@.
2020-10-08set SO_REUSEADDR on the server socket when we play oscp server.beck1-1/+2
ok inoguchi@ tb@ deraadt@
2020-10-08A void function has no return value, so zap RETURN VALUES sectiontb1-5/+2
documenting that SSL_set_bio(3) cannot fail. A similar commit was made by schwarze a while ago for a few functions in libcrypto.
2020-10-08grammar fix: if/when a renegotiation takeS placetb2-6/+6
2020-10-08Read cert.pem once and reuse it instead of reading it twice per test certtb1-18/+10
chain. It only takes a few dozens of ms to read it, but doing this 7290 times adds up to a few minutes run time. This way, the test completes in a handful of seconds. Diagnosed by jsing, ok beck
2020-10-07zap trailing whitespacetb1-21/+21
2020-10-07add arguments to skip a bunch of x448 teststb1-3/+18
2020-10-07fix line wrappingtb1-3/+2
2020-10-07Hook up tlslegacy regress.jsing1-1/+2
2020-10-07Mop up various things that are now unused with the new record layer.jsing3-32/+6
ok inoguchi@ tb@
2020-10-07Add regress tests for switching from the new TLS stack to the legacy stack.jsing2-0/+642
This includes a test where the server response includes multiple handhshake messages in the single TLS plaintext record (which would have caught the bug just fixed in tls13_legacy.c).
2020-10-07Include a TLS record header when switching to the legacy stack.jsing1-9/+27
When switching to the legacy TLS stack we previously copied any remaining handshake messages into the receive buffer, but do not include any TLS record header (largely due to the fact that we've already processed part of the TLS record that we actually received - that part is placed into the init_buf). This worked fine with the old record layer implementation, however the new record layer expects to find the TLS record header. This means that if we switch from the new stack to the legacy stack (i.e. the remote side does not support TLSv1.3) and there is more than one handshake message in the TLS plaintext record (which Microsoft's TLS stack is known to do), we now read a TLS record of zero bytes instead of getting the correct length. Fix this by generating a pseudo-TLS record header when switching from the new TLS stack to the legacy stack. Found the hard way by guenther@. Thanks to tb@ for coming up with a reproducible test case and doing much of the debugging. ok inoguchi@ tb@
2020-10-06Use std=gnu99 to be able to build the tests with both base clang and gcc.mpi1-1/+3
2020-10-06Use random value for canary bytes; ok tb@otto1-23/+1
2020-10-03Merge d1_{clnt,srvr}.c into ssl_{clnt,srvr}.cjsing6-359/+103
The d1_{clnt,srvr}.c contain a single function each - merge these into the ssl_{clnt,srvr}.c, renaming them with an ssl3_ prefix for consistency. ok beck@ tb@
2020-10-03Use TLSv1_1_enc_data instead of DTLSv1_enc_data.jsing3-11/+6
DTLSv1 is TLSv1.1 over datagrams - there is no need for a separate SSL3_ENC_METHOD struct, just use TLSv1_1_enc_data and remove DTLSv1_enc_data entirely. ok tb@
2020-10-03Reimplement the TLSv1.2 record handling for the read side.jsing6-605/+426
This is the next step in replacing the TLSv1.2 record layer. The existing record handling code does decryption and processing in place, which is not ideal for various reasons, however it is retained for now as other code depends on this behaviour. Additionally, CBC requires special handling to avoid timing oracles - for now the existing timing safe code is largely retained. ok beck@ inoguchi@ tb@
2020-10-03Rename tls13_record_layer_alert() to tls13_record_layer_enqueue_alert()jsing1-3/+4
This avoids naming confusion with an upcoming TLSv1.2 record layer change and is more descriptive of this function. Requested by tb@
2020-10-03Make dtls1_copy_record() take a DTLS1_RECORD_DATA_INTERNAL *.jsing1-10/+4
This removes the need for extra variables and casts. ok inoguchi@ tb@
2020-10-03Inline two macros that are only used in one place each.jsing1-16/+6
This improves readability - while here also add a missing return value check (although it cannot currently fail). ok inoguchi@ tb@
2020-10-03KNFtb1-12/+11
2020-10-03typotb1-1/+1
2020-10-02spelling, punctuation, whitespacetb2-6/+6
2020-10-02Add -[46] nops for compatibility with the OpenSSL s_servertb1-1/+9
On OpenBSD it's necessary to use the eopenssl11 s_server with either -4 or -6 to choose an address family. I often want to try something with an OpenSSL server and then test the same thing with LibreSSL or vice versa. Adding and removing -4s on top of editing the command is annoying and distracting. This commits teaches our s_server to ignore -4 and -6 and thus makes commands that work with eopenssl11 more likely to work with openssl(1). These options are deliberately undocumented and don't show up in help listings. ok bcook inoguchi jsing
2020-10-02Add possibility to link and run this test against the OpenSSL 1.1.1 packagetb1-1/+7
using the make variable EOPENSSL11. Suggested by jsing
2020-10-02Use += and ?= and tidy up whitespacetb1-8/+8
2020-10-02Tidy up: no need to link statically against libcrypto and no needtb1-4/+4
to look at its private headers either.
2020-10-02Make this test compile against OpenSSL 1.1tb1-11/+21
The X509_STORE_CTX struct is opaque in OpenSSL 1.1. To avoid reaching inside it, reuse the trusted certificate store that was just assigned to it and use X509_STORE_CTX_get0_param(3) to access the verification parameters.
2020-09-26Ensure leaf is set up on X509_STORE_CTX before verification.jsing1-9/+7
Previously the leaf certificate was only being set up on the X509_STORE_CTX after two verification steps were performed, however at least one of those steps could result in the verification callback being triggered and existing code breaking. Issue noticed by Raf Czlonka when attempting to connect to talk.google.com using profanity (which does not set SNI and ends up receiving an invalid certificate). ok beck@ deraadt@ tb@
2020-09-26Call dtls1_hm_fragment_free() from dtls1_drain_fragments()jsing2-8/+7
Currently dtls1_drain_fragments() has a incomplete handrolled version of dtls1_hm_fragment_free(), which has the potential to leak memory. Replace the handrolled free with a call to dtls1_hm_fragment_free(). ok inoguchi@ tb@
2020-09-26Have dtls1_new() call dtls1_free() on failure.jsing1-36/+22
Allocate into the appropriate structures and call dtls1_free() on failure, rather than allocating into local variables and then remembering to free various things on failure. ok tb@
2020-09-26Have dtls1_hm_fragment_new() call dtls1_hm_fragment_free() on failure.jsing1-26/+17
Rather than using local variables and having to remember which things need to be freed upon a failure at a certain point, simply allocate into the hm_fragment struct and call dtls1_hm_fragment_free() on failure. Also use calloc() to ensure memory is appropriately zeroed/initialised. ok tb@
2020-09-26Refactor dtls1_clear_queues()tb1-25/+26
An upcoming cleanup diff by jsing needs dtls1_clear_queues() to be able to handle NULL pqueues. While one can easily add a NULL check to pqueue_pop(), this does not really fit in with the rest of the code. There are two kinds of while loops in dtls1_clear_queues that drain pqueues, so add two helper functions with a NULL check each. ok jsing
2020-09-26jumping into the x509 fray with a bunch of whitespace repairderaadt1-6/+6
2020-09-25move test-tls13-finished.py from slow tests to normal tests.tb1-27/+26
2020-09-25bump to LibreSSL 3.2.2 ahead of lockbcook1-3/+3
ok tb@
2020-09-25KNF for a few comments and indent a labeltb1-8/+12
2020-09-25Remove some dangling elses for consistency with the rest of the filetb1-25/+19
2020-09-25Simplify UI_new_method()tb1-10/+4
Use calloc() instead of malloc() and setting all members manually to 0. Avoid unnecessary else branch.
2020-09-25Move variable declaration to the top of UI_set_result and ditchtb1-19/+16
a pointless local scope. suggested by jsing
2020-09-25The default branch of a switch somehow got moved inside of a pointlesstb1-3/+3
local scope of a case branch. Move it into the proper location. No binary change on amd64. "sure" jsing
2020-09-25Simplify call to ERR_print_errors_cb()tb1-5/+4
There is no reason for print_error()'s third argument to be a UI *. It may just as well be a void * to match what ERR_print_errors_cb() expects. This avoids casting the function pointer. Also, there's no need for a (void *) cast. ok jsing
2020-09-25test-tls13-finished.py has 70 failing tests that expect a "decode_error"tb1-6/+94
instead of the "decrypt_error" sent by tls13_server_finished_recv(). Both alerts appear to be reasonable in this context, so enable the tests while working around this.
2020-09-25delete a stale commenttb1-5/+1
2020-09-24Error out if ok_chars and cancel_chars overlaptb1-2/+4
It is a bit silly to push an error on the stack without erroring out, so error out if the ok_chars and cancel_chars overlap. ok jsing