aboutsummaryrefslogtreecommitdiffstats
path: root/src/tests
Commit message (Collapse)AuthorAgeFilesLines
* Avoid creating+deleting test DB for certstoreJack Lloyd2017-01-091-6/+3
| | | | Just use in-memory sqlite DB instead
* Avoid deprecation warning in TLS testsJack Lloyd2017-01-091-0/+3
|
* Work around an apparent problem with GCC on AIXJack Lloyd2017-01-061-4/+5
| | | | | | | | When compiled by GCC 4.8 on AIX 7.1 ppc32, the TLS policy tests fail because the exception thrown from the TLS policy check ends up not being caught at runtime by the test if the catch statement is for `std::exception&` or even `Botan::Exception&` but only if the actually thrown type `Botan::TLS::TLS_Exception` is caught.
* Another try/catch for the testsJack Lloyd2017-01-061-8/+13
|
* Avoid using uninitialized RNG object in tests if construction failsJack Lloyd2017-01-061-4/+11
| | | | Found by Coverity scanner
* Add tests for Stream_Cipher_ModeJack Lloyd2017-01-061-0/+14
| | | | GH #713
* Merge GH #806 Add tests for TLS certificate static messageJack Lloyd2017-01-053-5/+54
|\
| * Add tests for certificate status messageJack Lloyd2017-01-043-5/+54
| | | | | | | | | | | | | | Currently untested by TLS crosstalk tests because it is not supported on the server side. Exposes the rest of TLS message types to application.
* | Merge GH #803 Add botan_ffi_supports_version funcJack Lloyd2017-01-051-0/+1
|\ \
| * | Add botan_ffi_supports_api functionJack Lloyd2017-01-041-0/+1
| |/ | | | | | | | | | | | | | | | | | | | | | | This lets us upgrade the FFI version over time and still allow applications to reliably detect if the current library binary supports their version. As an example, it would be useful to be able to add features to FFI sometime in 2.x. In that case, we would increase the value of the FFI API version, even though anything calling the old API would still work perfectly. Applications can verify at runtime the API they want to use is supported using this new call.
* / Avoid construct in test that causes compilation problem on XCode 6Jack Lloyd2017-01-041-2/+15
|/ | | | GH #798
* Use Botan::X509_CA constructor that takes rng in testsSimon Warta2017-01-031-1/+1
| | | | because there there is no system_rng on ios
* Add some final annotations in the PK testsJack Lloyd2017-01-021-7/+7
|
* Convert DH invalid key test to read from fileJack Lloyd2017-01-023-42/+62
|
* Merge GH #790 Add DH tests from NIST CAVPJack Lloyd2017-01-024-3/+315
|\
| * Add test vectors for public key checks from NIST CAVPRené Korthaus2017-01-021-0/+39
| |
| * Load q for DH public key in testsRené Korthaus2017-01-021-1/+11
| |
| * Add positive DH test vectors from NIST CAVPRené Korthaus2017-01-024-2/+265
| |
* | Merge GH #792 Fix BigInt::random_integer testJack Lloyd2017-01-021-9/+8
|\ \
| * | Increase value of ITERATIONS_PER_POSSIBLE_VALUE to 750Simon Warta2017-01-021-1/+2
| | | | | | | | | | | | to avoid test failures
| * | Simplify loop to foreach in test_random_integer()Simon Warta2017-01-021-2/+2
| | |
| * | Fix math in test_random_integer()Simon Warta2017-01-021-5/+3
| | | | | | | | | | | | | | | Removes complicated extra variable "dev", which was calculated incorrectly: if ratio = 0.0 then dev = 0.0, resulting in a test success.
| * | Rename ITERATIONS -> ITERATIONS_PER_POSSIBLE_VALUESimon Warta2017-01-021-3/+3
| |/
* / Don't use deprecated PK_Signer ctor in testsRené Korthaus2017-01-011-1/+1
|/
* Add test for TPMJack Lloyd2016-12-311-0/+83
| | | | | | | Compiles, but basically untested as my machine with a working TPM suffered a fatal logic board failure some time ago. If TPM is compiled in but creating the TPM context fails, test assumes no hardware is available and returns.
* Fix for minimized buildJack Lloyd2016-12-311-1/+7
|
* Fix for EME-Raw being disabled as in BSI policyJack Lloyd2016-12-311-1/+8
|
* Add a simple test of the all or nothing transformJack Lloyd2016-12-311-0/+56
|
* Add test that triggers Blinder to reinitialize stateJack Lloyd2016-12-311-0/+36
|
* Improve filter testsJack Lloyd2016-12-313-6/+117
| | | | | | | Fix a bug in Pipe::check_available that must date back 15 years... Add destructors to compression filter so unique_ptr destructor runs without user having to include an extra header for the owned type.
* Another fix for missing SHA1, and workaround Apple Clang problem.Jack Lloyd2016-12-311-8/+9
|
* Fix test with SHA-1 disabledJack Lloyd2016-12-311-0/+3
|
* Missing addJack Lloyd2016-12-311-0/+1
|
* Add more tests for random prime and DL group generationJack Lloyd2016-12-303-3/+120
|
* Increase default TLS DH min to 2048 bits, and add BSI policy class.Jack Lloyd2016-12-306-5/+29
| | | | | Moves BSI policy file to test data dir where it can be compared with what the hardcoded class outputs.
* Remove reference to CECPQ1_PSK OCB ciphersuite in test.Jack Lloyd2016-12-301-1/+0
| | | | | Initially planned, then decided to skip because supporting it requires more changes to the TLS handshake code than I want to do right now.
* Merge GH #785 Disable SHA-1 and weak RSA by default during cert validationJack Lloyd2016-12-303-7/+9
|\
| * Increase Path_Validation_Restrictions default min strength to 110Jack Lloyd2016-12-273-7/+9
| | | | | | | | | | Effectively disables 1024 bit RSA as well as SHA-1. Edit the tests where required to enable it again.
* | Add CECPQ1 OCB ciphersuitesJack Lloyd2016-12-301-0/+7
| | | | | | | | | | | | Clean up the ciphersuite generation script a bit. [ci skip]
* | One more Camellia TLS test fixJack Lloyd2016-12-281-1/+8
| |
* | Fix Camellia TLS testsJack Lloyd2016-12-281-2/+9
|/ | | | | | Disabling SHA-256 in TLS 1.1/1.2 has the effect of disabling the Camellia ECDH ciphersuites. So the test policy ended up with an empty ciphersuite list, when negotiating older versions.
* Speed up DSA param gen testJack Lloyd2016-12-262-6/+28
| | | | Record counter value in test data, and start the search from there.
* Travis did not like these long testsJack Lloyd2016-12-251-2/+2
|
* Long test was too longJack Lloyd2016-12-241-6/+3
|
* Add test option --run-long-testsJack Lloyd2016-12-2412-57/+130
| | | | | | Previously longer tests were hidden behind higher 'soak levels' but these arbitrary cutoffs are confusing compared to a simple short tests/long tests split.
* Export tls_messages.h as a public headerRené Korthaus2016-12-231-1/+2
| | | | | | | TLS::Callbacks::inspect_handshake_message() allows applications to inspect all handshake messages, but this requires access to the types in tls_messages.h. As a matter of fact, this also exports tls_extensions.h as a public header.
* Ignore the right thingJack Lloyd2016-12-231-1/+1
|
* Fix minimized buildJack Lloyd2016-12-231-0/+4
|
* Add DL_Group testsJack Lloyd2016-12-231-0/+146
| | | | | | | | | Fix a bug in how the 6144 and 8192 IETF MODP groups were encoded; they have g and q values switched. Fixed by just switching the PEM header to match the actual encoded format. Rename DL_Group::X942_DH_PARAMETERS to ANSI_X9_42_DH_PARAMETERS to avoid a macro conflict with Windows cryptography headers (GH #482)
* Fix ECDH testJack Lloyd2016-12-221-13/+10
|
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-21 20:00:56 +0000