openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	zap trailing whitespace	tb	2021-06-19	1	-4/+7
\|
*	Add DTLS test cases that use non-zero initial epochs.	jsing	2021-06-19	2	-5/+44
\| \| \| \| \| \|	In particular, test handling of 0xfffe and 0xffff - the latter results in wrapping to zero for the next epoch. One of these tests triggers a known bug in libssl, which will be fixed following this commit.
*	Add more complex DTLS tests for delay/reordering.	jsing	2021-06-19	1	-17/+160
\| \| \| \| \|	These tests exercise the various queues and delayed processing that exists in the DTLS code.
*	Expand comment that details why two DTLS tests currently fail.	jsing	2021-06-19	1	-2/+5
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Two tests currently fail (and are disabled) due to a flaw in the DTLSv1.0 specification - this flaw was addressed in DTLSv1.2, however our DTLS server code still needs to support the fix. Quoting RFC 6347 section 4.2.4: "This requirement applies to DTLS 1.0 as well, and though not explicit in [DTLS1], it was always required for the state machine to function correctly." In otherwords, both the original DTLS implementation and the DTLSv1.0 specification have a broken state machine, resulting in possible dead lock.
*	Provide the ability to delay/reorder DTLS packets.	jsing	2021-06-19	1	-14/+147
\| \| \| \| \|	Add a test that delays the client CCS, resulting in it arriving after the client Finished message.
*	Remove SSL_CTX_set_read_ahead() calls - it is now the default for DTLS.	jsing	2021-06-18	1	-3/+1
\|
*	Use limits.h instead of sys/limits.h in dtlstest.c for portable	inoguchi	2021-05-03	1	-2/+2
\| \| \| \|	discussed and input from jsing@
*	Enable auto DHE and disable session tickets for some tests.	jsing	2021-02-07	1	-12/+13
\| \| \| \|	This allows us to drop the server messages that we intend on dropping.
*	Only hexdump packets/messages on higher debug levels.	jsing	2021-02-06	1	-3/+4
\|
*	Test reads and writes between the client and server.	jsing	2021-02-06	1	-3/+49
\|
*	Add an explicit cast to make this test compile and pass with gcc.	tb	2020-10-16	1	-2/+2
\| \| \| \| \|	gcc emits a signed vs unsigned comparison warning which breaks the build due to -Werror.
*	Test DTLS timeouts and retransmissions by dropping specific messages.	jsing	2020-10-15	1	-5/+299
\| \| \| \| \| \| \| \| \|	Provide a BIO that can drop specific messages in order to trigger and test DTLS timeouts and retransmissions. Note that the SSL buffering BIO (bbio) has to be removed to ensure that handshake messages are sent individually. This would have detected the recent DTLS breakage with retransmissions for a flight that includes a CCS.
*	Improve poll and event handling.	jsing	2020-10-15	1	-8/+27
\| \| \| \| \|	In particular, ensure we clear events when the client or server side has completed and fix timeouts to ensure we use a non-zero timeout if present.
*	Add regress tests for DTLS.	jsing	2020-10-14	2	-0/+411
	Test the operation of a DTLS client and server, with and without cookies, using the default MTU and a specifically lowered MTU. Further regress tests will be built on this to exercise other parts of the DTLS code base (such as retransmission, fragmentation and reassembly).