aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Add test for TPMJack Lloyd2016-12-311-0/+83
| | | | | | | Compiles, but basically untested as my machine with a working TPM suffered a fatal logic board failure some time ago. If TPM is compiled in but creating the TPM context fails, test assumes no hardware is available and returns.
* Fix for minimized buildJack Lloyd2016-12-311-1/+7
|
* Fix for EME-Raw being disabled as in BSI policyJack Lloyd2016-12-311-1/+8
|
* Remove SRP6 file supportJack Lloyd2016-12-312-133/+0
| | | | | | | | | | | | | It turns out SRP6 files use a different base64 alphabet than standard, and additionally Botan's decoding of the group id seems wrong though I haven't verified this second was a bug. In any case this code couldn't parse anything it was supposed to and never could. I had already planned on adding a database backed SRP store and removing this code but the fact that it's actually not functional for purpose suggests it's best to remove this now rather than let someone chance upon it and be endlessly frustrated that it doesn't seem to work because all the verifiers are garbled.
* Add a simple test of the all or nothing transformJack Lloyd2016-12-312-2/+58
|
* Add test that triggers Blinder to reinitialize stateJack Lloyd2016-12-311-0/+36
|
* Improve filter testsJack Lloyd2016-12-316-8/+127
| | | | | | | Fix a bug in Pipe::check_available that must date back 15 years... Add destructors to compression filter so unique_ptr destructor runs without user having to include an extra header for the owned type.
* Another fix for missing SHA1, and workaround Apple Clang problem.Jack Lloyd2016-12-311-8/+9
|
* Fix test with SHA-1 disabledJack Lloyd2016-12-311-0/+3
|
* Missing addJack Lloyd2016-12-311-0/+1
|
* Add more tests for random prime and DL group generationJack Lloyd2016-12-303-3/+120
|
* Increase default TLS DH min to 2048 bits, and add BSI policy class.Jack Lloyd2016-12-308-7/+85
| | | | | Moves BSI policy file to test data dir where it can be compared with what the hardcoded class outputs.
* Remove reference to CECPQ1_PSK OCB ciphersuite in test.Jack Lloyd2016-12-301-1/+0
| | | | | Initially planned, then decided to skip because supporting it requires more changes to the TLS handshake code than I want to do right now.
* Merge GH #785 Disable SHA-1 and weak RSA by default during cert validationJack Lloyd2016-12-304-13/+17
|\
| * Increase Path_Validation_Restrictions default min strength to 110Jack Lloyd2016-12-274-13/+17
| | | | | | | | | | Effectively disables 1024 bit RSA as well as SHA-1. Edit the tests where required to enable it again.
* | Add CECPQ1 OCB ciphersuitesJack Lloyd2016-12-303-25/+42
| | | | | | | | | | | | Clean up the ciphersuite generation script a bit. [ci skip]
* | Disable OpenSSL in lcov scriptJack Lloyd2016-12-301-1/+1
| | | | | | | | | | Kind of confuses the output. And also seems to crash for me (somewhere deep inside OpenSSL). Unclear what the problem is there.
* | Tiny code simplificationJack Lloyd2016-12-301-3/+1
| |
* | One more Camellia TLS test fixJack Lloyd2016-12-281-1/+8
| |
* | Fix Camellia TLS testsJack Lloyd2016-12-281-2/+9
| | | | | | | | | | | | Disabling SHA-256 in TLS 1.1/1.2 has the effect of disabling the Camellia ECDH ciphersuites. So the test policy ended up with an empty ciphersuite list, when negotiating older versions.
* | Merge GH #786 Fix fuzzer after #783 header changeJack Lloyd2016-12-281-1/+1
|\ \ | | | | | | | | | [ci skip]
| * | Fix building this fuzzerAlex Gaynor2016-12-281-1/+1
| |/ | | | | (untested)
* | Add tls_ciphers commandJack Lloyd2016-12-281-0/+123
| | | | | | | | Lists ciphersuites that will be sent for a particular policy/version.
* | Prohibit SHA256/SHA384 ciphersuites in TLS 1.0/1.1 (GH #496)Jack Lloyd2016-12-281-3/+10
|/
* Remove unnecessary BOTAN_DLL annotationsJack Lloyd2016-12-274-5/+5
|
* Speed up DSA param gen testJack Lloyd2016-12-264-14/+42
| | | | Record counter value in test data, and start the search from there.
* Travis did not like these long testsJack Lloyd2016-12-251-2/+2
|
* Fix XMSS speed commandJack Lloyd2016-12-241-4/+6
|
* Long test was too longJack Lloyd2016-12-241-6/+3
|
* Add test option --run-long-testsJack Lloyd2016-12-2413-58/+131
| | | | | | Previously longer tests were hidden behind higher 'soak levels' but these arbitrary cutoffs are confusing compared to a simple short tests/long tests split.
* Merge GH #783 Expose TLS message types to applicationsJack Lloyd2016-12-2421-31/+45
|\
| * Export tls_messages.h as a public headerRené Korthaus2016-12-2321-31/+45
| | | | | | | | | | | | | | TLS::Callbacks::inspect_handshake_message() allows applications to inspect all handshake messages, but this requires access to the types in tls_messages.h. As a matter of fact, this also exports tls_extensions.h as a public header.
* | Compile fixJack Lloyd2016-12-231-0/+1
| |
* | Fix file descriptor leak introduced in bcae34c0cJack Lloyd2016-12-232-5/+1
|/ | | | Caused tests to fail on CI
* Ignore the right thingJack Lloyd2016-12-231-1/+1
|
* Fix minimized buildJack Lloyd2016-12-231-0/+4
|
* Remove nested anon namespaceJack Lloyd2016-12-231-4/+0
|
* Add DL_Group testsJack Lloyd2016-12-234-7/+153
| | | | | | | | | Fix a bug in how the 6144 and 8192 IETF MODP groups were encoded; they have g and q values switched. Fixed by just switching the PEM header to match the actual encoded format. Rename DL_Group::X942_DH_PARAMETERS to ANSI_X9_42_DH_PARAMETERS to avoid a macro conflict with Windows cryptography headers (GH #482)
* Fix ECDH testJack Lloyd2016-12-221-13/+10
|
* More filter testsJack Lloyd2016-12-225-35/+83
| | | | | Expose Data{Source,Sink}_Stream types even if no filesystem is available. Instead just guard the constructors taking a pathname.
* Add tests for AEAD name and nonce size APIsJack Lloyd2016-12-221-0/+3
|
* Add tests for 4-pass Tiger hashJack Lloyd2016-12-221-0/+12
|
* Add AES GCM tests from WycheproofJack Lloyd2016-12-221-0/+35
|
* Add Wycheproof EAX test casesJack Lloyd2016-12-211-18/+170
|
* Merge GH #779 Add ECDH/ECIES blinding and DH small subgroup checkingJack Lloyd2016-12-214-18/+55
|\
| * Add missing q == 0 check in DL_Scheme_PublicKey::check_key() as q may not be ↵Never2016-12-201-7/+19
| | | | | | | | available in all groups
| * Blind the ECDH/ECIES agree operation.Never2016-12-192-12/+21
| |
| * Added DH public key check y^q mod p = 1 against small-subgroup attacks as ↵Never2016-12-191-0/+2
| | | | | | | | described in rfc2785
| * Improved DL_Group verification. The group is invalid, if g^q mod p !=1 and ↵Never2016-12-191-5/+19
| | | | | | | | increased number of Miller-Rabin iterations, if strong is set (we pass 128 as prob in make_prm.cpp).
* | Add RSA PKCS1v1.5 signature verification tests from Wycheproof suite.Jack Lloyd2016-12-205-1/+229
| | | | | | | | | | A set of carefully generated invalid signatures which are sometimes accepted by implementations due to bugs in padding verification.
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-13 09:47:58 +0000