summaryrefslogtreecommitdiff
path: root/src/regress/lib (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Be more strict about BER and DER terminology.doug2015-06-161-15/+18
| | | | | | | | bs_ber.c does not convert BER to DER. It's a hack to convert a DER-like encoding with one violation (indefinite form) to strict DER. Rename the functions to reflect this. ok miod@ jsing@
* Need to operate of CXXFLAGS now.miod2015-05-291-3/+3
|
* Make this run on strict alignment architectures.miod2015-05-081-6/+9
|
* Check for invalid leading zeros in CBS_get_asn1_uint64.doug2015-04-251-2/+4
| | | | | | | | | | ASN.1 integers cannot have all zeros or all ones for the first 9 bits. This rule ensures the numbers are encoded with the smallest number of content octets (see ITU-T Rec X.690 section 8.3.2). Based on BoringSSL commit 5933723b7b592e9914f703d630b596e140c93e16 ok deraadt@ jsing@
* Now that tls_close() is more robust, consider a failure to be fatal.jsing2015-04-151-1/+1
|
* fix for regression test for strtol(). it failed (the wrong kind ofphessler2015-03-151-2/+2
| | | | | | | | fail), on 64-bit systems. tested on 64-bit (amd64) and 32-bit (sparc). OK claudio@ deraadt@
* Reject DH keys sent by a server if they are considered too small; inspiredmiod2015-03-081-38/+4
| | | | | by a similar BoringSSL change, but raising the limit to 1024 bits. ok jsing@ markus@ guenther@ deraadt@
* Fix CVE-2014-3570: properly calculate the square of a BIGNUM value.bcook2015-02-251-23/+66
| | | | | | | | | | | See https://www.openssl.org/news/secadv_20150108.txt for a more detailed discussion. Original OpenSSL patch here: https://github.com/openssl/openssl/commit/a7a44ba55cb4f884c6bc9ceac90072dea38e66d0 The regression test is modified a little for KNF. ok miod@
* Trivial fix for test progress output.bcook2015-02-251-4/+7
| | | | Remove unneeded dangling else, compound statements on a single line.
* Update for recent verify related naming changes.jsing2015-02-222-28/+28
|
* BN_free() has its own NULL check.jsing2015-02-191-14/+7
|
* KNF.jsing2015-02-191-766/+834
|
* Add more error checking and free resources in bytestringtest.doug2015-02-161-26/+47
|
* Fix various memory leaks by not exiting so abruptly from failed tests.miod2015-02-151-579/+507
|
* Remove ancient gcc workaround on mips.miod2015-02-151-3/+2
|
* Memory leak. Coverity CID 78865miod2015-02-151-2/+3
|
* Wrong logic; Coverity CID 78894miod2015-02-151-1/+1
|
* Do not rely upon malloc(0) not returning NULL. Not all malloc implementationsmiod2015-02-111-6/+10
| | | | | | have this property. Instead, skip the malloc and memcmp if their size is zero. Per bcook@ request in order to run on AIX
* Add regress tests for SSL_CIPHER_get_by_value() and SSL_CIPHER_get_by_id().jsing2015-02-071-1/+61
|
* SIZE_MAX is standard, we should be using it in preference to themillert2015-02-061-5/+3
| | | | obsolete SIZE_T_MAX. OK miod@ beck@
* KNF bytestring files.doug2015-02-061-582/+596
| | | | | | | | I checked that this doesn't change anything. Compiled with clang using -Wno-pointer-sign -g0 to reduce the differences. Only difference in the asm is due to assert(0) line number changes in bs_cbs.c and bs_cbb.c. miod is ok with the general process.
* Import BoringSSL's crypto bytestring and crypto bytebuilder APIs.doug2015-02-063-1/+671
| | | | | | | | | | | | | | This is imported with as few changes as possible for the initial commit. I removed OPENSSL_EXPORT, replaced OPENSSL_malloc() etc with malloc() and changed a few header includes. BoringSSL has this as part of their public API. We're leaving it internal to libssl for now. Based on BoringSSL's CBB/CBS API as of commit c5cc15b4f5b1d6e9b9112cb8d30205a638aa2c54. input + ok jsing@, miod@
* Add libssl ciphers regress, which currently only coversjsing2015-02-063-1/+130
| | | | get_cipher_by_char/put_cipher_by_char.
* Missing $OpenBSD$'s.krw2015-01-205-0/+5
| | | | ok deraadt@
* Move 40MB of .rodata and 40MB of stack to .bss; allows this test to run onmiod2014-12-151-3/+7
| | | | platforms with small MAXTSIZ or MAXSSIZ.
* unifdef OPENSSL_NO_NEXTPROTONEGjsing2014-12-141-12/+0
|
* Increase cipher suite test coverage by including all cipher suites thatjsing2014-12-121-5/+5
| | | | use RSA authentication, rather than only those that use RSA key exchange.
* Add regress for ALPN.jsing2014-12-102-1/+180
| | | | Based on OpenSSL.
* fix previous.daniel2014-12-101-2/+4
|
* t_exhaust is too exhaustingderaadt2014-12-091-3/+3
|
* remove duplicate initialization of .sid_ctx in testbcook2014-12-071-3/+1
|
* Allow specific libtls hostname validation errors to propagate.bcook2014-12-071-3/+7
| | | | | | | | Remove direct calls to printf from the tls_check_hostname() path. This allows NUL byte error messages to bubble up to the caller, to be logged in a program-appropriate way. It also removes non-portable calls to getprogname(). ok jsing@
* The -ssl2 flag does nothing - remove the flag and any tests that werejsing2014-12-062-34/+4
| | | | using it.
* Allow overriding the path to the testssl and openssl binaries.bcook2014-12-031-9/+9
| | | | | | | This is needed by the portable tree to point directly to the newly-built binaries when running unit tests. discussed with jsing@ and others
* Fill the buffer with 'z' instead of 'a' since 'a' is part of themillert2014-12-032-38/+150
| | | | | | | string we are testing. Add tests to verify that we get SIGSEGV when passed a NULL src or dst. It is better to crash than for an implementation to check for NULL and try to recover.
* Add simple strlcpy regressmillert2014-12-023-3/+123
|
* Add simple strlcat regressmillert2014-12-023-2/+124
|
* Add strnlen to SUBDIRS so we actually run its tests.millert2014-12-021-2/+2
|
* prefer memcmp to bcmp.bcook2014-11-261-2/+2
| | | | ok tedu@ miod@ deraadt@
* GOST regression tests; from Dmitry Eremin-Solenikovmiod2014-11-183-1/+18
|
* GOST tests, not connected to the build yet.miod2014-11-092-0/+1464
|
* Initial regress for libtls hostname verification.jsing2014-11-013-2/+247
|
* Update regress for the libressl to libtls rename.jsing2014-10-314-0/+288
|
* #undef LIBRESSL_INTERNAL for the RAND_pseudo_bytes() test.jsing2014-10-221-0/+2
|
* Use arc4random_buf() instead of RAND_bytes() or RAND_pseudo_bytes() (mostjsing2014-10-224-21/+15
| | | | with unchecked return values).
* None of these need <openssl/rand.h>jsing2014-10-225-5/+0
|
* Remove _XOPEN_SOURCE_EXTENDED since we're not too concerned aboutjsing2014-10-131-9/+2
| | | | gethostname being declared properly on Compaq platforms that use DEC C...
* BIO_free() and SSL_CTX_free() have explicit NULL checks, so there is nojsing2014-10-131-29/+16
| | | | need to have additional checks here.
* Add NPN regress tests from OpenSSL. However, unlike OpenSSL, actually exitjsing2014-10-132-3/+146
| | | | with a failure if the NPN verification fails.
* Fix mmap() calls that check for a result other than MAP_FAILED.doug2014-09-271-1/+1
| | | | ok tedu@
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-14 00:53:35 +0000