aboutsummaryrefslogtreecommitdiffstats
path: root/src/tests
Commit message (Collapse)AuthorAgeFilesLines
* Support PSSR_RawJack Lloyd2017-09-167-140/+803
| | | | | | | Allows PSS-signing a raw hash while also still specifying the salt length. GH #1211
* Merge duplicated logic for clearing CPUID bitsJack Lloyd2017-09-161-40/+1
|
* Update Wycheproof GCM testsJack Lloyd2017-09-151-6/+38
|
* some formattingAtanas Filyanov2017-09-151-1/+5
|
* reenable 8 byte gcm tagsAtanas Filyanov2017-09-151-0/+9
|
* Allow GCM tag size in the range 96..128 bitsAtanas Filyanov2017-09-141-15/+43
|
* Merge GH #1208 Fix decoding of RFC 5915 ECC keysJack Lloyd2017-09-132-2/+31
|\
| * Remove inner/outer OID check in EC_PrivateKey ctorRené Korthaus2017-09-132-2/+31
| | | | | | | | | | | | | | | | RFC 5915 mandates that the OID of an ECDSA ECPrivateKey shall be id-ecPublicKey with the named curve as the parameters. ECPrivateKey may contain the named curve OID, too, which is compared to id-ecPublicKey. Such keys could not be loaded. We remove this check and add a test vector from strongswan.
* | allow 12 byte GCM tags and add test vectorsAtanas Filyanov2017-09-131-0/+48
|/
* Reference the right pipeJack Lloyd2017-09-111-1/+1
| | | | This didn't affect the results [ci skip]
* Merge GH #1202 Fix CFB IV carryover closes #1200Jack Lloyd2017-09-111-0/+71
|\
| * Address CFB carryover bugJack Lloyd2017-09-101-0/+71
| | | | | | | | | | | | Test data generated by 1.10 so hopefully no further issues here. GH #1200
* | Change SM2 encryption to match updated standard.Jack Lloyd2017-09-101-1/+2
| | | | | | | | | | | | | | | | Unfortunately it seems the SM2 format changed between 2010 and 2012, now the ciphertext is C1 || C3 || C2. Unfortunate no matter how you slice it, but at least it's easy to convert from one form to another.
* | Fix a couple more VC warningsJack Lloyd2017-09-102-3/+3
| |
* | Fix bogus ffi testJack Lloyd2017-09-101-1/+1
|/ | | | Caught by a warning from VC
* Fix loading of plaintext PKCS#8 private keysRené Korthaus2017-09-081-3/+10
| | | | | We fixed this in the C++ API in GH #381, but apparently not in ffi. Also adds the missing tests.
* Merge GH #1189 Correct return value of botan_pk_op_verify_finishJack Lloyd2017-09-071-9/+9
|\
| * Correct return value of botan_pk_op_verify_finishJack Lloyd2017-09-061-9/+9
| | | | | | | | | | | | | | This function changed behavior in 0d403a3 see also GH #1187 Add new return code BOTAN_FFI_INVALID_VERIFIER and use it for both signature and bcrypt verification functions.
* | Add support for computing SM2 ZA field to FFIJack Lloyd2017-09-061-0/+8
| | | | | | | | This is a contribution from Ribose Inc.
* | Support arbitrary hashes for SM2 signaturesJack Lloyd2017-09-062-2/+3
| | | | | | | | This is a contribution from Ribose Inc
* | Support arbitrary hashes for SM2 encryptionJack Lloyd2017-09-051-3/+3
|/ | | | This is a contribution from Ribose Inc.
* Simplify polynomial doubling codeJack Lloyd2017-09-051-0/+13
| | | | | | | | | | GCC and Clang generate effectively identical code for a template with parameters, vs completely unrolled code as was used previously. Add a little-endian variant so XTS can use it. This extends XTS support to cover 256 and 512-bit ciphers. I was not able to find another implementation that supports both XTS and ciphers with large blocks, so the XTS test vectors are self-generated.
* Output errors to cerrJack Lloyd2017-09-021-4/+4
|
* Support a negative base in power_modJack Lloyd2017-09-022-0/+28
| | | | Closes #1168
* Add a script for running TLS-Attacker, remove old shell scriptsJack Lloyd2017-09-021-0/+29
| | | | [ci skip]
* Change http://botan.randombit.net to https URIsJack Lloyd2017-09-011-3/+3
| | | | | | Not a big deal since the site already uses HSTS, but whatever. [ci skip]
* Merge GH #1169 Add LLVM bitcode targetJack Lloyd2017-08-311-2/+15
|\
| * Add support for LLVM bitcode targetJack Lloyd2017-08-301-2/+15
| |
* | Fix a few more MSVC warningsJack Lloyd2017-08-313-5/+5
| |
* | More MSVC warnings fixesJack Lloyd2017-08-312-3/+3
| |
* | Fix various MSVC warningsJack Lloyd2017-08-312-3/+3
|/ | | | Based on VC2017 output
* Remove hard-coded fuzz testsJack Lloyd2017-08-2556-455/+0
| | | | All of these values were imported into crypto-corpus repo
* Use correct padding mode in ARIA CBC testJack Lloyd2017-08-231-1/+1
|
* Cleanup ARIAJack Lloyd2017-08-231-3/+10
| | | | Remove NEON support, replace macros with inlines
* Add missing ARIA test vectors (GH #1004)Jeffrey Walton2017-08-231-0/+35
|
* Simplify botan_privkey_create_XXXJack Lloyd2017-08-221-2/+2
| | | | All of these can just forward to botan_privkey_create
* Add dh functions in ffiKonstantinos Kolelis2017-08-221-7/+128
|
* Add is_passhash9_alg_supported()René Korthaus2017-08-192-24/+22
|
* Add guards for MAC and hash algo used in passhash9 testsRené Korthaus2017-08-181-1/+16
| | | | | | | | Previously, passhash9 tests would fail if for example blowfish was not part of the build. Adds guards for the different MAC and hash algorithms used in passhash9 for calls to generate_passhash9(). For check_passhash9(), there is no way to know that an algorithm is not supported, but at least we improve the situation a bit here.
* More ECDSA Raw(hash) testsJack Lloyd2017-08-161-0/+17
|
* Allow signature using `Raw(hashname)`Jack Lloyd2017-08-153-1/+41
| | | | | | This confirms the message is exactly the size of the expected hash, and also causes RFC 6979 nonces to be generated using the specified hash. See also https://github.com/riboseinc/rnp/issues/367
* Add botan_hex_decode, botan_base64_encode, botan_base64_decode FFI funcsJack Lloyd2017-08-151-0/+30
|
* Merge GH #1151 Add SHACAL2Jack Lloyd2017-08-151-0/+4097
|\
| * Add SHACAL2 in generic SIMDJack Lloyd2017-08-131-0/+14
| | | | | | | | Bit over 2x faster on my desktop
| * Add SHACAL2Jack Lloyd2017-08-131-0/+4083
| | | | | | | | 256 bit ARX block cipher with hardware support, what's not to love.
* | Improve polynomial doubling code, move to utilJack Lloyd2017-08-152-0/+262
| | | | | | | | | | | | | | | | | | Now does 64-bits at a time instead of 8 bits, and avoids conditional timing channel on the XOR carry. Confirmed that at least GCC 7 and Clang 4 on x86-64 compile the functions without conditional jumps. Also removes CMAC as a dependency of OCB, which only needed it in order to call CMAC::poly_double
* | Unused variable warning [ci skip]Jack Lloyd2017-08-141-1/+1
|/
* FFI test must search test data relative to data dir.Alexander Bluhm2017-08-131-1/+1
| | | | | | | The Test::data_file() method adds the current data dir prefix to the test data path so that it can be overwritten with the --data-dir option. This was missing in the ffi test and could result in a botan_x509_cert_load_file exception.
* Merge GH #1144 Fix bug for ECDSA signing an all-zero hashJack Lloyd2017-08-073-1/+35
|\
| * Fix issue signing an ECDSA hash of all-zeros (GH #1143)Jack Lloyd2017-08-073-1/+35
| | | | | | | | | | The tests were generated by Botan but I was able to verify the resulting signatures using Golang's ecdsa module.
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-03 02:11:55 +0000