aboutsummaryrefslogtreecommitdiffstats
path: root/src/tests
Commit message (Collapse)AuthorAgeFilesLines
* Add test vectors for public key checks from NIST CAVPRené Korthaus2017-01-021-0/+39
|
* Load q for DH public key in testsRené Korthaus2017-01-021-1/+11
|
* Add positive DH test vectors from NIST CAVPRené Korthaus2017-01-024-2/+265
|
* Add test for TPMJack Lloyd2016-12-311-0/+83
| | | | | | | Compiles, but basically untested as my machine with a working TPM suffered a fatal logic board failure some time ago. If TPM is compiled in but creating the TPM context fails, test assumes no hardware is available and returns.
* Fix for minimized buildJack Lloyd2016-12-311-1/+7
|
* Fix for EME-Raw being disabled as in BSI policyJack Lloyd2016-12-311-1/+8
|
* Add a simple test of the all or nothing transformJack Lloyd2016-12-311-0/+56
|
* Add test that triggers Blinder to reinitialize stateJack Lloyd2016-12-311-0/+36
|
* Improve filter testsJack Lloyd2016-12-313-6/+117
| | | | | | | Fix a bug in Pipe::check_available that must date back 15 years... Add destructors to compression filter so unique_ptr destructor runs without user having to include an extra header for the owned type.
* Another fix for missing SHA1, and workaround Apple Clang problem.Jack Lloyd2016-12-311-8/+9
|
* Fix test with SHA-1 disabledJack Lloyd2016-12-311-0/+3
|
* Missing addJack Lloyd2016-12-311-0/+1
|
* Add more tests for random prime and DL group generationJack Lloyd2016-12-303-3/+120
|
* Increase default TLS DH min to 2048 bits, and add BSI policy class.Jack Lloyd2016-12-306-5/+29
| | | | | Moves BSI policy file to test data dir where it can be compared with what the hardcoded class outputs.
* Remove reference to CECPQ1_PSK OCB ciphersuite in test.Jack Lloyd2016-12-301-1/+0
| | | | | Initially planned, then decided to skip because supporting it requires more changes to the TLS handshake code than I want to do right now.
* Merge GH #785 Disable SHA-1 and weak RSA by default during cert validationJack Lloyd2016-12-303-7/+9
|\
| * Increase Path_Validation_Restrictions default min strength to 110Jack Lloyd2016-12-273-7/+9
| | | | | | | | | | Effectively disables 1024 bit RSA as well as SHA-1. Edit the tests where required to enable it again.
* | Add CECPQ1 OCB ciphersuitesJack Lloyd2016-12-301-0/+7
| | | | | | | | | | | | Clean up the ciphersuite generation script a bit. [ci skip]
* | One more Camellia TLS test fixJack Lloyd2016-12-281-1/+8
| |
* | Fix Camellia TLS testsJack Lloyd2016-12-281-2/+9
|/ | | | | | Disabling SHA-256 in TLS 1.1/1.2 has the effect of disabling the Camellia ECDH ciphersuites. So the test policy ended up with an empty ciphersuite list, when negotiating older versions.
* Speed up DSA param gen testJack Lloyd2016-12-262-6/+28
| | | | Record counter value in test data, and start the search from there.
* Travis did not like these long testsJack Lloyd2016-12-251-2/+2
|
* Long test was too longJack Lloyd2016-12-241-6/+3
|
* Add test option --run-long-testsJack Lloyd2016-12-2412-57/+130
| | | | | | Previously longer tests were hidden behind higher 'soak levels' but these arbitrary cutoffs are confusing compared to a simple short tests/long tests split.
* Export tls_messages.h as a public headerRené Korthaus2016-12-231-1/+2
| | | | | | | TLS::Callbacks::inspect_handshake_message() allows applications to inspect all handshake messages, but this requires access to the types in tls_messages.h. As a matter of fact, this also exports tls_extensions.h as a public header.
* Ignore the right thingJack Lloyd2016-12-231-1/+1
|
* Fix minimized buildJack Lloyd2016-12-231-0/+4
|
* Add DL_Group testsJack Lloyd2016-12-231-0/+146
| | | | | | | | | Fix a bug in how the 6144 and 8192 IETF MODP groups were encoded; they have g and q values switched. Fixed by just switching the PEM header to match the actual encoded format. Rename DL_Group::X942_DH_PARAMETERS to ANSI_X9_42_DH_PARAMETERS to avoid a macro conflict with Windows cryptography headers (GH #482)
* Fix ECDH testJack Lloyd2016-12-221-13/+10
|
* More filter testsJack Lloyd2016-12-221-2/+55
| | | | | Expose Data{Source,Sink}_Stream types even if no filesystem is available. Instead just guard the constructors taking a pathname.
* Add tests for AEAD name and nonce size APIsJack Lloyd2016-12-221-0/+3
|
* Add tests for 4-pass Tiger hashJack Lloyd2016-12-221-0/+12
|
* Add AES GCM tests from WycheproofJack Lloyd2016-12-221-0/+35
|
* Add Wycheproof EAX test casesJack Lloyd2016-12-211-18/+170
|
* Add RSA PKCS1v1.5 signature verification tests from Wycheproof suite.Jack Lloyd2016-12-205-1/+229
| | | | | A set of carefully generated invalid signatures which are sometimes accepted by implementations due to bugs in padding verification.
* Remove obsolete test dataJack Lloyd2016-12-1934-152/+0
| | | | | Remove test files for CVC as well as various tests which have subsequently been rewritten.
* Remove duplicate test dataJack Lloyd2016-12-19153-0/+6
| | | | | | All 76 of the NIST certificate tests use the same root certificate and that issuer has an identical CRL for each test. So, just have the one copy.
* Add additional primality testsJack Lloyd2016-12-192-64/+222
| | | | | | | Add a long list of 'false' primes from Google's Wycheproof tests: https://github.com/google/wycheproof/blob/master/java/com/google/security/wycheproof/testcases/BigIntegerTest.java Split vector file format into Prime and NonPrime sections for easier reading.
* add some PKCS#11 negative testsDaniel Neus2016-12-191-0/+52
| | | | | - for PKCS11::Slot - for PKCS11::Session
* Fix ECIES testJack Lloyd2016-12-191-1/+1
|
* Minor refactoring of Text_Based_TestJack Lloyd2016-12-1939-149/+129
| | | | | | Turns out astyle has some bugs wrt C++11 initialize lists. Rather than having astyle mangle all of the tests, convert to using a string which is split once at the start instead of a vector of keys.
* Convert to using standard uintN_t integer typesJack Lloyd2016-12-1833-238/+235
| | | | | | Renames a couple of functions for somewhat better name consistency, eg make_u32bit becomes make_uint32. The old typedefs remain for now since probably lots of application code uses them.
* Add some additional ressol testsJack Lloyd2016-12-141-0/+20
|
* Fix exponentiation bug, related fixesJack Lloyd2016-12-143-3/+55
| | | | | | | | | | | | | | | GH #754 exposed a bug in the non-Montgomery exponentiation case. It turned out then when the fixed window was picked to any value > 1, the result would be incorrect due to an off by one. This is the one line fix in powm_fw.cpp Also fix a bug in bigint_mul which caused incorrect results, because the output BigInt was not being zeroed out before use. This is only exposed in rare cases, found (somewhat indirectly) in OSS-Fuzz #287. Add more modular exponentiation tests, which would have caught these issues earlier.
* Update test data to reflect change in e8009766ca2Jack Lloyd2016-12-111-24/+0
|
* Public_Key derived class ctors take an std::vector<byte>René Korthaus2016-12-111-3/+1
| | | | | | | Changes all the Public_Key derived classes ctors to take a std::vector instead of a secure_vector for the DER encoded public key bits. There is no point in transporting a public key in secure storage. (GH #768)
* Merge GH #765 Rewrite CBC unpadding operations as const timeJack Lloyd2016-12-101-6/+5
|\
| * Rewrote bc unpad functions as const time operations.Never2016-12-091-6/+5
| | | | | | | | | | | | The unpad functions return the blocksize as padding position, if the padding is invalid. .
* | Fix PK EME decoding tests when algo is missingJack Lloyd2016-12-101-2/+6
| |
* | Merge GH #759 Add ISO 9796-2 signature schemesJack Lloyd2016-12-082-0/+56
|\ \
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-11 15:47:49 +0000