summaryrefslogtreecommitdiff
path: root/src/regress/lib (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* remove mysterious, decorative comment blockletsbcook2015-07-181-21/+21
|
* Explicitly mark ignored BN_* return vals in tests.bcook2015-07-181-6/+6
| | | | | The tests will fail all the same. Fixes Coverity 78811 21659 21658 21657. Discussed with beck@
* check sscanf conversion, fixes Coverity 21666bcook2015-07-181-2/+6
| | | | ok doug@, miod@, guenther@
* Unhook tls_ext_alpn test until the code passes it.doug2015-07-131-2/+5
|
* Add tests for parsing TLS extension ALPN (RFC 7301).doug2015-07-092-2/+446
| | | | The current libssl code does not pass these tests yet.
* add setlocale testsemarie2015-07-071-1/+3
|
* add regress test for setlocale(3) and some relatedsemarie2015-07-072-0/+140
| | | | | | functions (MB_CUR_MAX, isalpha() for ctype. some tips from stsp@
* specify the array initializer valuebcook2015-07-011-2/+2
| | | | noted by kinichiro from github
* Convert ssl_bytes_to_cipher_list to CBS.doug2015-06-282-3/+19
| | | | | | | Link in the new 'unit' regress and expand the invalid tests to include some that would fail before the CBS conversion. input + ok miod@ jsing@
* Add unit tests for LibreSSL.doug2015-06-273-0/+256
| | | | | | cipher_list.c is based on code from jsing@. Discussed with jsing@
* Change CBS_dup() to also sync the offset.doug2015-06-231-1/+37
| | | | | | | Previously, CBS_dup() had its own offset. However, it is more consistent to copy everything. ok miod@ jsing@
* Convert bytestringtest to individual checks and don't short circuit.doug2015-06-231-321/+337
| | | | | | | | | The statements were chained together with OR which makes it more annoying to debug. Also, it was short circuiting all tests as soon as one function failed. Since the functions are independent, they should each run until error. Discussed with miod@ and jsing@
* Remove unnecessary regress target.doug2015-06-231-7/+2
|
* Remove obsolete MDC-2DES from libcrypto.doug2015-06-203-134/+1
| | | | ok deraadt@ jsing@ miod@
* Add tests for CBS_offset() and CBS_write_bytes().doug2015-06-171-2/+70
| | | | "no problem" miod@, tweak + ok jsing@
* Be more strict about BER and DER terminology.doug2015-06-161-15/+18
| | | | | | | | bs_ber.c does not convert BER to DER. It's a hack to convert a DER-like encoding with one violation (indefinite form) to strict DER. Rename the functions to reflect this. ok miod@ jsing@
* Need to operate of CXXFLAGS now.miod2015-05-291-3/+3
|
* Make this run on strict alignment architectures.miod2015-05-081-6/+9
|
* Check for invalid leading zeros in CBS_get_asn1_uint64.doug2015-04-251-2/+4
| | | | | | | | | | ASN.1 integers cannot have all zeros or all ones for the first 9 bits. This rule ensures the numbers are encoded with the smallest number of content octets (see ITU-T Rec X.690 section 8.3.2). Based on BoringSSL commit 5933723b7b592e9914f703d630b596e140c93e16 ok deraadt@ jsing@
* Now that tls_close() is more robust, consider a failure to be fatal.jsing2015-04-151-1/+1
|
* fix for regression test for strtol(). it failed (the wrong kind ofphessler2015-03-151-2/+2
| | | | | | | | fail), on 64-bit systems. tested on 64-bit (amd64) and 32-bit (sparc). OK claudio@ deraadt@
* Reject DH keys sent by a server if they are considered too small; inspiredmiod2015-03-081-38/+4
| | | | | by a similar BoringSSL change, but raising the limit to 1024 bits. ok jsing@ markus@ guenther@ deraadt@
* Fix CVE-2014-3570: properly calculate the square of a BIGNUM value.bcook2015-02-251-23/+66
| | | | | | | | | | | See https://www.openssl.org/news/secadv_20150108.txt for a more detailed discussion. Original OpenSSL patch here: https://github.com/openssl/openssl/commit/a7a44ba55cb4f884c6bc9ceac90072dea38e66d0 The regression test is modified a little for KNF. ok miod@
* Trivial fix for test progress output.bcook2015-02-251-4/+7
| | | | Remove unneeded dangling else, compound statements on a single line.
* Update for recent verify related naming changes.jsing2015-02-222-28/+28
|
* BN_free() has its own NULL check.jsing2015-02-191-14/+7
|
* KNF.jsing2015-02-191-766/+834
|
* Add more error checking and free resources in bytestringtest.doug2015-02-161-26/+47
|
* Fix various memory leaks by not exiting so abruptly from failed tests.miod2015-02-151-579/+507
|
* Remove ancient gcc workaround on mips.miod2015-02-151-3/+2
|
* Memory leak. Coverity CID 78865miod2015-02-151-2/+3
|
* Wrong logic; Coverity CID 78894miod2015-02-151-1/+1
|
* Do not rely upon malloc(0) not returning NULL. Not all malloc implementationsmiod2015-02-111-6/+10
| | | | | | have this property. Instead, skip the malloc and memcmp if their size is zero. Per bcook@ request in order to run on AIX
* Add regress tests for SSL_CIPHER_get_by_value() and SSL_CIPHER_get_by_id().jsing2015-02-071-1/+61
|
* SIZE_MAX is standard, we should be using it in preference to themillert2015-02-061-5/+3
| | | | obsolete SIZE_T_MAX. OK miod@ beck@
* KNF bytestring files.doug2015-02-061-582/+596
| | | | | | | | I checked that this doesn't change anything. Compiled with clang using -Wno-pointer-sign -g0 to reduce the differences. Only difference in the asm is due to assert(0) line number changes in bs_cbs.c and bs_cbb.c. miod is ok with the general process.
* Import BoringSSL's crypto bytestring and crypto bytebuilder APIs.doug2015-02-063-1/+671
| | | | | | | | | | | | | | This is imported with as few changes as possible for the initial commit. I removed OPENSSL_EXPORT, replaced OPENSSL_malloc() etc with malloc() and changed a few header includes. BoringSSL has this as part of their public API. We're leaving it internal to libssl for now. Based on BoringSSL's CBB/CBS API as of commit c5cc15b4f5b1d6e9b9112cb8d30205a638aa2c54. input + ok jsing@, miod@
* Add libssl ciphers regress, which currently only coversjsing2015-02-063-1/+130
| | | | get_cipher_by_char/put_cipher_by_char.
* Missing $OpenBSD$'s.krw2015-01-205-0/+5
| | | | ok deraadt@
* Move 40MB of .rodata and 40MB of stack to .bss; allows this test to run onmiod2014-12-151-3/+7
| | | | platforms with small MAXTSIZ or MAXSSIZ.
* unifdef OPENSSL_NO_NEXTPROTONEGjsing2014-12-141-12/+0
|
* Increase cipher suite test coverage by including all cipher suites thatjsing2014-12-121-5/+5
| | | | use RSA authentication, rather than only those that use RSA key exchange.
* Add regress for ALPN.jsing2014-12-102-1/+180
| | | | Based on OpenSSL.
* fix previous.daniel2014-12-101-2/+4
|
* t_exhaust is too exhaustingderaadt2014-12-091-3/+3
|
* remove duplicate initialization of .sid_ctx in testbcook2014-12-071-3/+1
|
* Allow specific libtls hostname validation errors to propagate.bcook2014-12-071-3/+7
| | | | | | | | Remove direct calls to printf from the tls_check_hostname() path. This allows NUL byte error messages to bubble up to the caller, to be logged in a program-appropriate way. It also removes non-portable calls to getprogname(). ok jsing@
* The -ssl2 flag does nothing - remove the flag and any tests that werejsing2014-12-062-34/+4
| | | | using it.
* Allow overriding the path to the testssl and openssl binaries.bcook2014-12-031-9/+9
| | | | | | | This is needed by the portable tree to point directly to the newly-built binaries when running unit tests. discussed with jsing@ and others
* Fill the buffer with 'z' instead of 'a' since 'a' is part of themillert2014-12-032-38/+150
| | | | | | | string we are testing. Add tests to verify that we get SIGSEGV when passed a NULL src or dst. It is better to crash than for an implementation to check for NULL and try to recover.
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-09-06 18:01:16 +0000