| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | add valid utc time that should fail to parse as generalized | beck | 2022-06-30 | 1 | -2/+6 | |
| | | ||||||
| * | Add tests for times missing seconds, and to be able to test | beck | 2022-06-30 | 1 | -3/+43 | |
| | | | | | invalid generalized times specifically | |||||
| * | Botan 2.19.2 has removed support for the OpenSSL crypto provider. | bluhm | 2022-06-28 | 2 | -24/+1 | |
| | | | | | | | | It was incompatible with OpenSSL 3.0. Remove the regression test to check that LibreSSL crypto works with Botan tests. This is better than to keep an outdated Botan in ports. discussed with tb@ beck@ | |||||
| * | Only asn1time needs to be static for now. | tb | 2022-06-28 | 1 | -2/+4 | |
| | | ||||||
| * | Make this regress test link staticly and use internal symbols | beck | 2022-06-28 | 1 | -1/+2 | |
| | | | | | so that it works and compiles during the tb@ pre-bump shuffle(tm). | |||||
| * | Fix the legacy verifier callback behaviour for untrusted certs. | beck | 2022-06-28 | 2 | -2/+303 | |
| | | | | | | | | | | | | | | | | | | | The verifier callback is used by mutt to do a form of certificate pinning where the callback gets fired and depending on a cert saved to a file will decide to accept an untrusted cert. This corrects two problems that affected this. The callback was not getting the correct depth and chain for the error where mutt would save the certificate in the first place, and then the callback was not getting fired to allow it to override the failing certificate validation. thanks to Avon Robertson <avon.r@xtra.co.nz> for the report and sthen@ for analysis. "The callback is not an API, it's a gordian knot - tb@" ok jsing@ | |||||
| * | Add new time manipulation funcitons that OpenSSL has exposed that | beck | 2022-06-27 | 1 | -2/+35 | |
| | | | | | | | | | the world seems to be using. Symbols.list changes and exposure to wait for minor bump ok jsing@ jca@ | |||||
| * | Fix URI name constraints, allow for URI's with no host part. | beck | 2022-06-26 | 1 | -0/+26 | |
| | | | | | | | | | | | | Such uri's must be parsed and allowed, but then should fail if a name constraint is present. Adds regress testing for this same case. fixes https://github.com/libressl-portable/openbsd/issues/131 ok tb@ | |||||
| * | Move leaf certificate checks to the last thing after chain validation. | beck | 2022-06-25 | 2 | -1/+285 | |
| | | | | | | | | | While seemingly illogical and not what is done in Go's validator, this mimics OpenSSL's behavior so that callback overrides for the expiry of a certificate will not "sticky" override a failure to build a chain. ok jsing@ | |||||
| * | Check pointer argument after {d2i,i2d}_ASN1_{BIT_STRING,BOOLEAN,INTEGER}() | jsing | 2022-06-25 | 1 | -2/+46 | |
| | | ||||||
| * | Add regress for ASN1_INTEGER_{get,set}_{u,}int64() | jsing | 2022-06-25 | 1 | -1/+103 | |
| | | ||||||
| * | Add regress for ASN1_INTEGER_cmp() | jsing | 2022-06-25 | 1 | -1/+76 | |
| | | ||||||
| * | Use dynamic linking correctly. bntest and bn_to_string need static linking. | tb | 2022-06-23 | 1 | -3/+5 | |
| | | ||||||
| * | Fix format strings for size_t | tb | 2022-06-22 | 1 | -5/+5 | |
| | | ||||||
| * | Fix format string: use %zu for size_t, not %lu. | tb | 2022-06-22 | 1 | -3/+3 | |
| | | ||||||
| * | Use uppercase for SUCCESS for consistency | tb | 2022-06-19 | 1 | -2/+2 | |
| | | ||||||
| * | None of these tests needs to link statically. | tb | 2022-06-19 | 2 | -4/+4 | |
| | | ||||||
| * | Drop bogus DPADD += ${LIBSSL} | tb | 2022-06-19 | 3 | -7/+6 | |
| | | ||||||
| * | Quick regression test that checks that BN_is_prime_fasttest_ex() | tb | 2022-06-18 | 2 | -1/+97 | |
| | | | | | | recognizes the primes in the primes[] table with and without trial division. Would have caught the bug fixed in bn_primes.c r1.9. | |||||
| * | Use consistent spacing around assignments | tb | 2022-06-02 | 1 | -4/+4 | |
| | | ||||||
| * | Only constraints and verify need static linking in here. | tb | 2022-06-02 | 2 | -5/+9 | |
| | | ||||||
| * | Add a simple test that exercises ASN1_STRING_to_UTF8() a little. | tb | 2022-05-16 | 2 | -1/+130 | |
| | | ||||||
| * | Tweak regress in such a way that it would have caught the bug in | tb | 2022-05-13 | 1 | -1/+6 | |
| | | | | | | | d2i_ASN1_OBJECT() fixed in a_object.c r1.48. from jsing | |||||
| * | Enable X509v3_asid_subset() tests now that they no longer segfault. | tb | 2022-05-12 | 1 | -7/+1 | |
| | | ||||||
| * | Add a few more testcases for X509v3_asid_subset() | tb | 2022-05-12 | 1 | -1/+144 | |
| | | ||||||
| * | Switch wycheproof.go to using the EVP HKDF API. | tb | 2022-05-05 | 1 | -6/+67 | |
| | | | | | | | | Gotta love EVP... Instead of a single, obvious call to HKDF(), you now need to call eight EVP functions with plenty of allocations and pointless copying internally. If you want to suffer even more, you could consider using the gorgeous string interface instead. | |||||
| * | Add tests that decode sequences into ASN.1 strings. | jsing | 2022-04-28 | 1 | -1/+97 | |
| | | | | | | | | | | | | Test decoding of sequences with length and indefinite length into an ASN.1 string - in this case the ASN.1 is not decoded, rather the octets are stored directly as the content of the string. This exercises a specific path through the ASN.1 decoder. (you know asn1complex is living up to its name when you have to import openssl/asn1t.h directly...) | |||||
| * | Ensure we clear the error stack before running tests that print errors. | jsing | 2022-04-27 | 2 | -2/+10 | |
| | | ||||||
| * | Enable ASN.1 INTEGER tests with invalid lengths/encodings. | jsing | 2022-04-27 | 1 | -3/+1 | |
| | | ||||||
| * | Add ASN1_INTEGER test coverage. | jsing | 2022-04-23 | 1 | -1/+248 | |
| | | ||||||
| * | Check EVPDigest* return values. | tb | 2022-03-31 | 1 | -4/+7 | |
| | | | | | CID 351293 | |||||
| * | Add a simple test to ensure that pmeth->cleanup() can cope with NULL | tb | 2022-03-30 | 2 | -2/+93 | |
| | | | | | pkey_ctx->data. | |||||
| * | Revise regress for ascii/text to ASN.1 object conversion rewrite. | jsing | 2022-03-19 | 1 | -58/+10 | |
| | | ||||||
| * | Add another invalid separator test case. | jsing | 2022-03-19 | 1 | -1/+5 | |
| | | ||||||
| * | Fix dependency to build bn_mod_sqrt. | bluhm | 2022-03-16 | 1 | -2/+2 | |
| | | ||||||
| * | Check BIO_reset() return value to make gcc happy. | tb | 2022-03-15 | 1 | -2/+5 | |
| | | ||||||
| * | Add a simple regress to verify that the infinite loop in BN_mod_sqrt() | tb | 2022-03-15 | 2 | -1/+138 | |
| | | | | | is fixed. | |||||
| * | Add a few regress test cases for name constraints. | tb | 2022-03-14 | 3 | -5/+25 | |
| | | | | | From Alex Wilson | |||||
| * | Simple regress for NULL deref reported by Guido Vranken and fixed in | tb | 2022-03-10 | 2 | -1/+51 | |
| | | | | | bn_exp2.c r1.13. | |||||
| * | Add test coverage for i2a_ASN1_OBJECT() | jsing | 2022-03-05 | 1 | -3/+39 | |
| | | ||||||
| * | Provide additional ASN1_OBJECT test coverage. | jsing | 2022-03-02 | 1 | -16/+114 | |
| | | ||||||
| * | Add regress coverage for ASN1_OBJECT public interfaces. | jsing | 2022-02-26 | 2 | -1/+399 | |
| | | ||||||
| * | Test OBJ_obj2txt() with NULL and short buffers. | jsing | 2022-02-20 | 1 | -1/+12 | |
| | | ||||||
| * | Add memory BIO small I/O tests. | jsing | 2022-02-19 | 1 | -1/+72 | |
| | | ||||||
| * | Add tests for memory BIO. | jsing | 2022-02-17 | 1 | -2/+254 | |
| | | ||||||
| * | Add test coverage for OBJ_txt2obj()/OBJ_obj2txt() with no_name == 0. | jsing | 2022-02-12 | 1 | -4/+99 | |
| | | ||||||
| * | Revise for OBJ_obj2txt() OID arc limits. | jsing | 2022-02-12 | 1 | -4/+4 | |
| | | ||||||
| * | Test OBJ_obj2nid() with an undefined (NID_undef) object. | jsing | 2022-02-11 | 1 | -2/+2 | |
| | | ||||||
| * | Add initial regress for objects. | jsing | 2022-02-11 | 3 | -1/+449 | |
| | | ||||||
| * | Fix memleaks reported by Ilya Shipitsin | tb | 2022-02-08 | 1 | -3/+5 | |
| | | ||||||
 |
index : openbsd | |
| A mirror of https://github.com/libressl/openbsd.git |
| summaryrefslogtreecommitdiff |