Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add some final annotations in the PK tests | Jack Lloyd | 2017-01-02 | 1 | -7/+7 |
| | |||||
* | Convert DH invalid key test to read from file | Jack Lloyd | 2017-01-02 | 3 | -42/+62 |
| | |||||
* | Merge GH #790 Add DH tests from NIST CAVP | Jack Lloyd | 2017-01-02 | 4 | -3/+315 |
|\ | |||||
| * | Add test vectors for public key checks from NIST CAVP | René Korthaus | 2017-01-02 | 1 | -0/+39 |
| | | |||||
| * | Load q for DH public key in tests | René Korthaus | 2017-01-02 | 1 | -1/+11 |
| | | |||||
| * | Add positive DH test vectors from NIST CAVP | René Korthaus | 2017-01-02 | 4 | -2/+265 |
| | | |||||
* | | Merge GH #792 Fix BigInt::random_integer test | Jack Lloyd | 2017-01-02 | 1 | -9/+8 |
|\ \ | |||||
| * | | Increase value of ITERATIONS_PER_POSSIBLE_VALUE to 750 | Simon Warta | 2017-01-02 | 1 | -1/+2 |
| | | | | | | | | | | | | to avoid test failures | ||||
| * | | Simplify loop to foreach in test_random_integer() | Simon Warta | 2017-01-02 | 1 | -2/+2 |
| | | | |||||
| * | | Fix math in test_random_integer() | Simon Warta | 2017-01-02 | 1 | -5/+3 |
| | | | | | | | | | | | | | | | Removes complicated extra variable "dev", which was calculated incorrectly: if ratio = 0.0 then dev = 0.0, resulting in a test success. | ||||
| * | | Rename ITERATIONS -> ITERATIONS_PER_POSSIBLE_VALUE | Simon Warta | 2017-01-02 | 1 | -3/+3 |
| |/ | |||||
* / | Don't use deprecated PK_Signer ctor in tests | René Korthaus | 2017-01-01 | 1 | -1/+1 |
|/ | |||||
* | Run python in coverage mode | Jack Lloyd | 2016-12-31 | 1 | -1/+1 |
| | |||||
* | Add test for TPM | Jack Lloyd | 2016-12-31 | 1 | -0/+83 |
| | | | | | | | Compiles, but basically untested as my machine with a working TPM suffered a fatal logic board failure some time ago. If TPM is compiled in but creating the TPM context fails, test assumes no hardware is available and returns. | ||||
* | Fix for minimized build | Jack Lloyd | 2016-12-31 | 1 | -1/+7 |
| | |||||
* | Fix for EME-Raw being disabled as in BSI policy | Jack Lloyd | 2016-12-31 | 1 | -1/+8 |
| | |||||
* | Remove SRP6 file support | Jack Lloyd | 2016-12-31 | 2 | -133/+0 |
| | | | | | | | | | | | | | It turns out SRP6 files use a different base64 alphabet than standard, and additionally Botan's decoding of the group id seems wrong though I haven't verified this second was a bug. In any case this code couldn't parse anything it was supposed to and never could. I had already planned on adding a database backed SRP store and removing this code but the fact that it's actually not functional for purpose suggests it's best to remove this now rather than let someone chance upon it and be endlessly frustrated that it doesn't seem to work because all the verifiers are garbled. | ||||
* | Add a simple test of the all or nothing transform | Jack Lloyd | 2016-12-31 | 2 | -2/+58 |
| | |||||
* | Add test that triggers Blinder to reinitialize state | Jack Lloyd | 2016-12-31 | 1 | -0/+36 |
| | |||||
* | Improve filter tests | Jack Lloyd | 2016-12-31 | 6 | -8/+127 |
| | | | | | | | Fix a bug in Pipe::check_available that must date back 15 years... Add destructors to compression filter so unique_ptr destructor runs without user having to include an extra header for the owned type. | ||||
* | Another fix for missing SHA1, and workaround Apple Clang problem. | Jack Lloyd | 2016-12-31 | 1 | -8/+9 |
| | |||||
* | Fix test with SHA-1 disabled | Jack Lloyd | 2016-12-31 | 1 | -0/+3 |
| | |||||
* | Missing add | Jack Lloyd | 2016-12-31 | 1 | -0/+1 |
| | |||||
* | Add more tests for random prime and DL group generation | Jack Lloyd | 2016-12-30 | 3 | -3/+120 |
| | |||||
* | Increase default TLS DH min to 2048 bits, and add BSI policy class. | Jack Lloyd | 2016-12-30 | 8 | -7/+85 |
| | | | | | Moves BSI policy file to test data dir where it can be compared with what the hardcoded class outputs. | ||||
* | Remove reference to CECPQ1_PSK OCB ciphersuite in test. | Jack Lloyd | 2016-12-30 | 1 | -1/+0 |
| | | | | | Initially planned, then decided to skip because supporting it requires more changes to the TLS handshake code than I want to do right now. | ||||
* | Merge GH #785 Disable SHA-1 and weak RSA by default during cert validation | Jack Lloyd | 2016-12-30 | 4 | -13/+17 |
|\ | |||||
| * | Increase Path_Validation_Restrictions default min strength to 110 | Jack Lloyd | 2016-12-27 | 4 | -13/+17 |
| | | | | | | | | | | Effectively disables 1024 bit RSA as well as SHA-1. Edit the tests where required to enable it again. | ||||
* | | Add CECPQ1 OCB ciphersuites | Jack Lloyd | 2016-12-30 | 3 | -25/+42 |
| | | | | | | | | | | | | Clean up the ciphersuite generation script a bit. [ci skip] | ||||
* | | Disable OpenSSL in lcov script | Jack Lloyd | 2016-12-30 | 1 | -1/+1 |
| | | | | | | | | | | Kind of confuses the output. And also seems to crash for me (somewhere deep inside OpenSSL). Unclear what the problem is there. | ||||
* | | Tiny code simplification | Jack Lloyd | 2016-12-30 | 1 | -3/+1 |
| | | |||||
* | | One more Camellia TLS test fix | Jack Lloyd | 2016-12-28 | 1 | -1/+8 |
| | | |||||
* | | Fix Camellia TLS tests | Jack Lloyd | 2016-12-28 | 1 | -2/+9 |
| | | | | | | | | | | | | Disabling SHA-256 in TLS 1.1/1.2 has the effect of disabling the Camellia ECDH ciphersuites. So the test policy ended up with an empty ciphersuite list, when negotiating older versions. | ||||
* | | Merge GH #786 Fix fuzzer after #783 header change | Jack Lloyd | 2016-12-28 | 1 | -1/+1 |
|\ \ | | | | | | | | | | [ci skip] | ||||
| * | | Fix building this fuzzer | Alex Gaynor | 2016-12-28 | 1 | -1/+1 |
| |/ | | | | | (untested) | ||||
* | | Add tls_ciphers command | Jack Lloyd | 2016-12-28 | 1 | -0/+123 |
| | | | | | | | | Lists ciphersuites that will be sent for a particular policy/version. | ||||
* | | Prohibit SHA256/SHA384 ciphersuites in TLS 1.0/1.1 (GH #496) | Jack Lloyd | 2016-12-28 | 1 | -3/+10 |
|/ | |||||
* | Remove unnecessary BOTAN_DLL annotations | Jack Lloyd | 2016-12-27 | 4 | -5/+5 |
| | |||||
* | Speed up DSA param gen test | Jack Lloyd | 2016-12-26 | 4 | -14/+42 |
| | | | | Record counter value in test data, and start the search from there. | ||||
* | Travis did not like these long tests | Jack Lloyd | 2016-12-25 | 1 | -2/+2 |
| | |||||
* | Fix XMSS speed command | Jack Lloyd | 2016-12-24 | 1 | -4/+6 |
| | |||||
* | Long test was too long | Jack Lloyd | 2016-12-24 | 1 | -6/+3 |
| | |||||
* | Add test option --run-long-tests | Jack Lloyd | 2016-12-24 | 13 | -58/+131 |
| | | | | | | Previously longer tests were hidden behind higher 'soak levels' but these arbitrary cutoffs are confusing compared to a simple short tests/long tests split. | ||||
* | Merge GH #783 Expose TLS message types to applications | Jack Lloyd | 2016-12-24 | 21 | -31/+45 |
|\ | |||||
| * | Export tls_messages.h as a public header | René Korthaus | 2016-12-23 | 21 | -31/+45 |
| | | | | | | | | | | | | | | TLS::Callbacks::inspect_handshake_message() allows applications to inspect all handshake messages, but this requires access to the types in tls_messages.h. As a matter of fact, this also exports tls_extensions.h as a public header. | ||||
* | | Compile fix | Jack Lloyd | 2016-12-23 | 1 | -0/+1 |
| | | |||||
* | | Fix file descriptor leak introduced in bcae34c0c | Jack Lloyd | 2016-12-23 | 2 | -5/+1 |
|/ | | | | Caused tests to fail on CI | ||||
* | Ignore the right thing | Jack Lloyd | 2016-12-23 | 1 | -1/+1 |
| | |||||
* | Fix minimized build | Jack Lloyd | 2016-12-23 | 1 | -0/+4 |
| | |||||
* | Remove nested anon namespace | Jack Lloyd | 2016-12-23 | 1 | -4/+0 |
| |