aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Another fix for missing SHA1, and workaround Apple Clang problem.Jack Lloyd2016-12-311-8/+9
|
* Fix test with SHA-1 disabledJack Lloyd2016-12-311-0/+3
|
* Missing addJack Lloyd2016-12-311-0/+1
|
* Add more tests for random prime and DL group generationJack Lloyd2016-12-303-3/+120
|
* Increase default TLS DH min to 2048 bits, and add BSI policy class.Jack Lloyd2016-12-308-7/+85
| | | | | Moves BSI policy file to test data dir where it can be compared with what the hardcoded class outputs.
* Remove reference to CECPQ1_PSK OCB ciphersuite in test.Jack Lloyd2016-12-301-1/+0
| | | | | Initially planned, then decided to skip because supporting it requires more changes to the TLS handshake code than I want to do right now.
* Merge GH #785 Disable SHA-1 and weak RSA by default during cert validationJack Lloyd2016-12-304-13/+17
|\
| * Increase Path_Validation_Restrictions default min strength to 110Jack Lloyd2016-12-274-13/+17
| | | | | | | | | | Effectively disables 1024 bit RSA as well as SHA-1. Edit the tests where required to enable it again.
* | Add CECPQ1 OCB ciphersuitesJack Lloyd2016-12-303-25/+42
| | | | | | | | | | | | Clean up the ciphersuite generation script a bit. [ci skip]
* | Disable OpenSSL in lcov scriptJack Lloyd2016-12-301-1/+1
| | | | | | | | | | Kind of confuses the output. And also seems to crash for me (somewhere deep inside OpenSSL). Unclear what the problem is there.
* | Tiny code simplificationJack Lloyd2016-12-301-3/+1
| |
* | One more Camellia TLS test fixJack Lloyd2016-12-281-1/+8
| |
* | Fix Camellia TLS testsJack Lloyd2016-12-281-2/+9
| | | | | | | | | | | | Disabling SHA-256 in TLS 1.1/1.2 has the effect of disabling the Camellia ECDH ciphersuites. So the test policy ended up with an empty ciphersuite list, when negotiating older versions.
* | Merge GH #786 Fix fuzzer after #783 header changeJack Lloyd2016-12-281-1/+1
|\ \ | | | | | | | | | [ci skip]
| * | Fix building this fuzzerAlex Gaynor2016-12-281-1/+1
| |/ | | | | (untested)
* | Add tls_ciphers commandJack Lloyd2016-12-281-0/+123
| | | | | | | | Lists ciphersuites that will be sent for a particular policy/version.
* | Prohibit SHA256/SHA384 ciphersuites in TLS 1.0/1.1 (GH #496)Jack Lloyd2016-12-281-3/+10
|/
* Remove unnecessary BOTAN_DLL annotationsJack Lloyd2016-12-274-5/+5
|
* Speed up DSA param gen testJack Lloyd2016-12-264-14/+42
| | | | Record counter value in test data, and start the search from there.
* Travis did not like these long testsJack Lloyd2016-12-251-2/+2
|
* Fix XMSS speed commandJack Lloyd2016-12-241-4/+6
|
* Long test was too longJack Lloyd2016-12-241-6/+3
|
* Add test option --run-long-testsJack Lloyd2016-12-2413-58/+131
| | | | | | Previously longer tests were hidden behind higher 'soak levels' but these arbitrary cutoffs are confusing compared to a simple short tests/long tests split.
* Merge GH #783 Expose TLS message types to applicationsJack Lloyd2016-12-2421-31/+45
|\
| * Export tls_messages.h as a public headerRené Korthaus2016-12-2321-31/+45
| | | | | | | | | | | | | | TLS::Callbacks::inspect_handshake_message() allows applications to inspect all handshake messages, but this requires access to the types in tls_messages.h. As a matter of fact, this also exports tls_extensions.h as a public header.
* | Compile fixJack Lloyd2016-12-231-0/+1
| |
* | Fix file descriptor leak introduced in bcae34c0cJack Lloyd2016-12-232-5/+1
|/ | | | Caused tests to fail on CI
* Ignore the right thingJack Lloyd2016-12-231-1/+1
|
* Fix minimized buildJack Lloyd2016-12-231-0/+4
|
* Remove nested anon namespaceJack Lloyd2016-12-231-4/+0
|
* Add DL_Group testsJack Lloyd2016-12-234-7/+153
| | | | | | | | | Fix a bug in how the 6144 and 8192 IETF MODP groups were encoded; they have g and q values switched. Fixed by just switching the PEM header to match the actual encoded format. Rename DL_Group::X942_DH_PARAMETERS to ANSI_X9_42_DH_PARAMETERS to avoid a macro conflict with Windows cryptography headers (GH #482)
* Fix ECDH testJack Lloyd2016-12-221-13/+10
|
* More filter testsJack Lloyd2016-12-225-35/+83
| | | | | Expose Data{Source,Sink}_Stream types even if no filesystem is available. Instead just guard the constructors taking a pathname.
* Add tests for AEAD name and nonce size APIsJack Lloyd2016-12-221-0/+3
|
* Add tests for 4-pass Tiger hashJack Lloyd2016-12-221-0/+12
|
* Add AES GCM tests from WycheproofJack Lloyd2016-12-221-0/+35
|
* Add Wycheproof EAX test casesJack Lloyd2016-12-211-18/+170
|
* Merge GH #779 Add ECDH/ECIES blinding and DH small subgroup checkingJack Lloyd2016-12-214-18/+55
|\
| * Add missing q == 0 check in DL_Scheme_PublicKey::check_key() as q may not be ↵Never2016-12-201-7/+19
| | | | | | | | available in all groups
| * Blind the ECDH/ECIES agree operation.Never2016-12-192-12/+21
| |
| * Added DH public key check y^q mod p = 1 against small-subgroup attacks as ↵Never2016-12-191-0/+2
| | | | | | | | described in rfc2785
| * Improved DL_Group verification. The group is invalid, if g^q mod p !=1 and ↵Never2016-12-191-5/+19
| | | | | | | | increased number of Miller-Rabin iterations, if strong is set (we pass 128 as prob in make_prm.cpp).
* | Add RSA PKCS1v1.5 signature verification tests from Wycheproof suite.Jack Lloyd2016-12-205-1/+229
| | | | | | | | | | A set of carefully generated invalid signatures which are sometimes accepted by implementations due to bugs in padding verification.
* | Remove obsolete test dataJack Lloyd2016-12-1934-152/+0
| | | | | | | | | | Remove test files for CVC as well as various tests which have subsequently been rewritten.
* | Remove duplicate test dataJack Lloyd2016-12-19153-0/+6
| | | | | | | | | | | | All 76 of the NIST certificate tests use the same root certificate and that issuer has an identical CRL for each test. So, just have the one copy.
* | Add additional primality testsJack Lloyd2016-12-192-64/+222
| | | | | | | | | | | | | | Add a long list of 'false' primes from Google's Wycheproof tests: https://github.com/google/wycheproof/blob/master/java/com/google/security/wycheproof/testcases/BigIntegerTest.java Split vector file format into Prime and NonPrime sections for easier reading.
* | Merge GH #781 Fix Doxygen comments for ISO 9796 paddingJack Lloyd2016-12-191-4/+4
|\ \
| * | ISO-9796-2 doxygen build fixesDaniel Neus2016-12-191-4/+4
| | |
* | | add some PKCS#11 negative testsDaniel Neus2016-12-191-0/+52
|/ / | | | | | | | | - for PKCS11::Slot - for PKCS11::Session
* | Fix ECIES testJack Lloyd2016-12-191-1/+1
| |