summaryrefslogtreecommitdiff
path: root/src/regress/lib/libssl (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Update regress test to handle change to ssl_cipher_list_to_bytes().jsing2016-12-041-10/+11
|
* Update regress for IDEA cipher suite removal.jsing2016-11-061-83/+83
|
* Move pqueue regress from libcrypto to libssl, since that's where the pqueuejsing2016-11-044-1/+140
| | | | | code now lives. Also unbreak the regress following the symbol hiding changes in libssl.
* Some tests require internal symbols; have them link with the staticguenther2016-11-043-6/+8
| | | | | | | libssl or libtls so they can continue to see them after the shared library namespace is cleaned up ok jsing@
* Update client hello messages to follow the removal of fixed ECDH.jsing2016-10-191-89/+65
|
* remove unneeded reach-around includebcook2016-09-031-2/+2
|
* Fix build of regress after source movesbeck2016-09-021-2/+2
|
* Enable ALPN regress now that it passes.jsing2016-08-271-4/+2
|
* Update regress test to reflect changes in the cipher list.jsing2016-04-281-61/+62
|
* Change test to use length 128 (shortest long-form encoding).libressl-v2.3.1doug2015-10-251-2/+2
| | | | From BoringSSL commit: d13a5e15d4e4eb51513be665306a2beba39869df
* check if openssl(1) actually works before proceedingbcook2015-09-271-0/+2
| | | | | It was possible for this test to pass even if the openssl command itself was missing.
* Revise regression test so that it works correctly with AES taking priorityjsing2015-09-131-34/+191
| | | | if hardware acceleration is available.
* remove e_os2.h includesbcook2015-09-131-1/+0
| | | | ok jsing@
* Add an initial TLS client regress, which currently covers ClientHellojsing2015-09-013-1/+369
| | | | message generation.
* Remove SSLv3 support from LibreSSL regression tests.doug2015-08-273-56/+5
|
* Don't hardcode /usr/src, use BSDSRCDIRtobiasu2015-07-311-2/+2
|
* simplify length checking in do_indefinite_convertbcook2015-07-181-11/+17
| | | | | Fixes Coverity 117506, 117507, 117508 ok doug@
* Unhook tls_ext_alpn test until the code passes it.doug2015-07-131-2/+5
|
* Add tests for parsing TLS extension ALPN (RFC 7301).doug2015-07-092-2/+446
| | | | The current libssl code does not pass these tests yet.
* specify the array initializer valuelibressl-v2.2.1bcook2015-07-011-2/+2
| | | | noted by kinichiro from github
* Convert ssl_bytes_to_cipher_list to CBS.doug2015-06-282-3/+19
| | | | | | | Link in the new 'unit' regress and expand the invalid tests to include some that would fail before the CBS conversion. input + ok miod@ jsing@
* Add unit tests for LibreSSL.doug2015-06-273-0/+256
| | | | | | cipher_list.c is based on code from jsing@. Discussed with jsing@
* Change CBS_dup() to also sync the offset.doug2015-06-231-1/+37
| | | | | | | Previously, CBS_dup() had its own offset. However, it is more consistent to copy everything. ok miod@ jsing@
* Convert bytestringtest to individual checks and don't short circuit.doug2015-06-231-321/+337
| | | | | | | | | The statements were chained together with OR which makes it more annoying to debug. Also, it was short circuiting all tests as soon as one function failed. Since the functions are independent, they should each run until error. Discussed with miod@ and jsing@
* Remove unnecessary regress target.doug2015-06-231-7/+2
|
* Add tests for CBS_offset() and CBS_write_bytes().doug2015-06-171-2/+70
| | | | "no problem" miod@, tweak + ok jsing@
* Be more strict about BER and DER terminology.doug2015-06-161-15/+18
| | | | | | | | bs_ber.c does not convert BER to DER. It's a hack to convert a DER-like encoding with one violation (indefinite form) to strict DER. Rename the functions to reflect this. ok miod@ jsing@
* Check for invalid leading zeros in CBS_get_asn1_uint64.doug2015-04-251-2/+4
| | | | | | | | | | ASN.1 integers cannot have all zeros or all ones for the first 9 bits. This rule ensures the numbers are encoded with the smallest number of content octets (see ITU-T Rec X.690 section 8.3.2). Based on BoringSSL commit 5933723b7b592e9914f703d630b596e140c93e16 ok deraadt@ jsing@
* Reject DH keys sent by a server if they are considered too small; inspiredmiod2015-03-081-38/+4
| | | | | by a similar BoringSSL change, but raising the limit to 1024 bits. ok jsing@ markus@ guenther@ deraadt@
* Add more error checking and free resources in bytestringtest.doug2015-02-161-26/+47
|
* Add regress tests for SSL_CIPHER_get_by_value() and SSL_CIPHER_get_by_id().jsing2015-02-071-1/+61
|
* KNF bytestring files.doug2015-02-061-582/+596
| | | | | | | | I checked that this doesn't change anything. Compiled with clang using -Wno-pointer-sign -g0 to reduce the differences. Only difference in the asm is due to assert(0) line number changes in bs_cbs.c and bs_cbb.c. miod is ok with the general process.
* Import BoringSSL's crypto bytestring and crypto bytebuilder APIs.doug2015-02-063-1/+671
| | | | | | | | | | | | | | This is imported with as few changes as possible for the initial commit. I removed OPENSSL_EXPORT, replaced OPENSSL_malloc() etc with malloc() and changed a few header includes. BoringSSL has this as part of their public API. We're leaving it internal to libssl for now. Based on BoringSSL's CBB/CBS API as of commit c5cc15b4f5b1d6e9b9112cb8d30205a638aa2c54. input + ok jsing@, miod@
* Add libssl ciphers regress, which currently only coversjsing2015-02-063-1/+130
| | | | get_cipher_by_char/put_cipher_by_char.
* unifdef OPENSSL_NO_NEXTPROTONEGjsing2014-12-141-12/+0
|
* Increase cipher suite test coverage by including all cipher suites thatjsing2014-12-121-5/+5
| | | | use RSA authentication, rather than only those that use RSA key exchange.
* Add regress for ALPN.jsing2014-12-102-1/+180
| | | | Based on OpenSSL.
* remove duplicate initialization of .sid_ctx in testbcook2014-12-071-3/+1
|
* The -ssl2 flag does nothing - remove the flag and any tests that werejsing2014-12-062-34/+4
| | | | using it.
* Allow overriding the path to the testssl and openssl binaries.bcook2014-12-031-9/+9
| | | | | | | This is needed by the portable tree to point directly to the newly-built binaries when running unit tests. discussed with jsing@ and others
* Remove _XOPEN_SOURCE_EXTENDED since we're not too concerned aboutjsing2014-10-131-9/+2
| | | | gethostname being declared properly on Compaq platforms that use DEC C...
* BIO_free() and SSL_CTX_free() have explicit NULL checks, so there is nojsing2014-10-131-29/+16
| | | | need to have additional checks here.
* Add NPN regress tests from OpenSSL. However, unlike OpenSSL, actually exitjsing2014-10-132-3/+146
| | | | with a failure if the NPN verification fails.
* Fix tlsext_tick_lifetime_hint value in test #2 to make sure themiod2014-07-161-29/+29
| | | | | (tlsext_tick_lifetime_hint > 0) test also passes on 32-bit platforms (tlsext_tick_lifetime_hint is a long).
* Add a regress test for the ASN1 handling of SSL session tickets.jsing2014-07-133-1/+389
|
* More KNF.jsing2014-07-121-95/+108
|
* Remove #ifndefs for OPENSSL_NO_DH, OPENSSL_NO_ECDH andjsing2014-07-121-41/+0
| | | | | OPENSSL_NO_X509_VERIFY. We're not going to build with these and the same removal has already been done for libssl.
* Remove PSK from the ssl regress.jsing2014-07-112-134/+1
|
* Uncompress ssltest.jsing2014-07-101-50/+0
|
* Include -DLIBRESSL_INTERNAL in regress makefiles.jsing2014-07-081-2/+2
| | | | ok miod@
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-25 02:11:24 +0000