wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-28 07:52:21 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
689a82a622c07bfa5fc3330d7caa98ebf8c6ea6a
wolfssl/tests
History
Daniel Pouzzner 689a82a622 fix AES-related code, in both crypto and TLS layers, for various uninitialized data and resource leak defects around wc_AesInit() and wc_AesFree(): 
* followup to https://github.com/wolfSSL/wolfssl/pull/7009 "20231128-misc-fixes" and  https://github.com/wolfSSL/wolfssl/pull/7011 "Add missing wc_AesInit calls."

* adds WC_DEBUG_CIPHER_LIFECYCLE, which embeds asserts in low-level AES implementations for proper usage of wc_AesInit() and wc_AesFree().

* fixes native CMAC, AES-EAX, and AES-XTS implementations to assure resource release.

* adds missing wc_AesXtsInit() API, and adds a new wc_AesXtsSetKey_NoInit().

* fixes misspellings in EVP that unconditionally gated out AES-OFB and AES-XTS.

* fixes misspellings in EVP that unconditionally gated out AES-CBC and AES-CFB code in wolfSSL_EVP_CIPHER_CTX_cleanup_cipher().

* openssl compat AES low level cipher API has no counterpart to wc_AesFree(), so these compat APIs will now be gated out in configurations where they would otherwise leak memory or file descriptors (WOLFSSL_AFALG, WOLFSSL_DEVCRYPTO, WOLF_CRYPTO_CB, etc.).  A new macro, WC_AESFREE_IS_MANDATORY, is defined in wolfcrypt/aes.h to streamline this dependency.

* fixes 40 missing EVP_CIPHER_CTX_cleanup()s and 11 wc_AesFree()s in src/ssl.c, src/ssl_crypto.c, tests/api.c, and wolfcrypt/test/test.c.
2023-12-05 15:58:09 -06:00
..
api.c
fix AES-related code, in both crypto and TLS layers, for various uninitialized data and resource leak defects around wc_AesInit() and wc_AesFree():
2023-12-05 15:58:09 -06:00
CONF_FILES_README.md
Cleanup markdown documentation
2021-10-13 16:39:46 +01:00
hash.c
update copyright to 2023
2022-12-30 17:12:11 -07:00
include.am
Add dtls 1.3 PQC suites tests
2023-11-08 10:29:35 +01:00
NCONF_test.cnf
Internal unit tests
2020-12-17 14:26:49 +01:00
quic.c
Fix residual typos found by codespell
2023-09-11 11:34:28 +02:00
README
re-format test-psk-no-id.conf add README
2015-08-03 11:04:18 -06:00
srp.c
Avoid use of uninitialized array
2023-10-27 15:38:46 -04:00
suites.c
Add dtls 1.3 PQC suites tests
2023-11-08 10:29:35 +01:00
test-altchains.conf
Fix to catch the issue in this PR with alt cert chains, which only happens if the verify callback is used and the chain is long enough. Cleanup of the myVerify callback to allow specific actions. Fix the suites.c to not crash if no newline at end of file. Added helpful debug message to show that a CA was found.
2020-06-18 09:26:50 -07:00
test-chains.conf
Fix for tests/test-chains.conf with new intermediate CA.
2020-06-18 08:33:59 -07:00
test-dhprime.conf
Fix for DH prime test (extra leading spaces). Fix for new chain tests with CRL enabled. The current way of testing chain only loads root CA as trusted. The intermediate CA CRL isn't trusted or loaded and causes error.
2018-12-21 12:36:47 -08:00
test-dtls13-cid.conf
add basic ConnectionID DTLS tests
2022-08-23 16:58:24 +02:00
test-dtls13-downgrade-fails.conf
tests: add negative version negotation tests
2022-09-28 18:42:38 +02:00
test-dtls13-downgrade.conf
tests: add dtls downgrade tests
2022-07-06 16:18:44 +02:00
test-dtls13-pq-2-frag.conf
Add dtls 1.3 PQC suites tests
2023-11-08 10:29:35 +01:00
test-dtls13-pq-2.conf
Kyber with DTLS 1.3 tests
2022-12-14 12:46:24 -05:00
test-dtls13-pq-frag.conf
Add dtls 1.3 PQC suites tests
2023-11-08 10:29:35 +01:00
test-dtls13-pq.conf
Kyber with DTLS 1.3 tests
2022-12-14 12:46:24 -05:00
test-dtls13-psk.conf
fix: wrong size using DTLSv1.3 in RestartHandshakeHashWithCookie
2022-10-13 17:42:58 +02:00
test-dtls13.conf
tests: add dtls13 null cipher test
2023-05-19 08:10:26 +00:00
test-dtls-downgrade.conf
tests: add dtls downgrade tests
2022-07-06 16:18:44 +02:00
test-dtls-fails-cipher.conf
Correctly reset the Tx sequence number
2021-03-09 18:30:10 +01:00
test-dtls-fails.conf
Added a suite test use case to cover the new error check. Also fixed and issue with passing a couple flags to the test case runner, and some other changes to support the new test.
2020-07-22 13:20:23 -07:00
test-dtls-group.conf
Purge IDEA cipher
2022-01-31 15:29:25 -05:00
test-dtls-mtu.conf
Merge pull request #5149 from julek-wolfssl/store-frags-v2
2022-06-01 10:52:54 -07:00
test-dtls-reneg-client.conf
Purge IDEA cipher
2022-01-31 15:29:25 -05:00
test-dtls-reneg-server.conf
Add testing/docs for blocking write
2022-05-27 21:26:55 +02:00
test-dtls-resume.conf
tests: add bidirectional shutdown UDP tests
2022-05-11 13:27:37 +02:00
test-dtls-sha2.conf
Disallow SHA-2 ciphersuites from TLS 1.0 and 1.1 handshakes
2019-09-06 09:31:14 +10:00
test-dtls-srtp-fails.conf
tests: support test for SRTP
2022-01-19 13:35:29 +01:00
test-dtls-srtp.conf
tests: support test for SRTP
2022-01-19 13:35:29 +01:00
test-dtls.conf
tests: add bidirectional shutdown UDP tests
2022-05-11 13:27:37 +02:00
test-ecc-cust-curves.conf
Added TLS v1.2 and v1.3 test cases for ECC Koblitz and Brainpool curves (both server auth and mutual auth). Cipher suites: ECDHE-ECDSA-AES128-GCM-SHA256, ECDH-ECDSA-AES128-GCM-SHA256 and TLS13-AES128-GCM-SHA256.
2020-11-10 09:47:36 -08:00
test-ed448.conf
Update OpenSSL interopability testing
2020-08-11 16:44:45 +10:00
test-ed25519.conf
ECC: Disable ECC but have Curve25519/448 and PK callbacks fix
2021-05-10 10:32:55 +10:00
test-enckeys.conf
New tests for cert chains, alternate cert chains, trusted peer certs and DH prime cleanup:
2018-12-21 09:54:55 -08:00
test-fails.conf
Verify Callback Fix
2020-11-24 11:46:10 -08:00
test-maxfrag-dtls.conf
New tests for cert chains, alternate cert chains, trusted peer certs and DH prime cleanup:
2018-12-21 09:54:55 -08:00
test-maxfrag.conf
Add testing/docs for blocking write
2022-05-27 21:26:55 +02:00
test-p521.conf
TLS 1.3: Fix P-521 algorithm matching
2020-09-18 10:51:55 +10:00
test-psk-no-id-sha2.conf
Disallow SHA-2 ciphersuites from TLS 1.0 and 1.1 handshakes
2019-09-06 09:31:14 +10:00
test-psk-no-id.conf
Disallow SHA-2 ciphersuites from TLS 1.0 and 1.1 handshakes
2019-09-06 09:31:14 +10:00
test-psk.conf
Add TLS 1.2 ciphersuite ECDHE_PSK_WITH_AES_128_GCM_SHA256 from RFC 8442
2022-05-27 11:05:55 -04:00
test-rsapss.conf
handle certificates with RSA-PSS signature that have RSAk public keys
2022-09-21 08:24:09 -06:00
test-sctp-sha2.conf
SCTP Test
2020-07-20 15:03:48 -07:00
test-sctp.conf
Purge IDEA cipher
2022-01-31 15:29:25 -05:00
test-sha2.conf
Disallow SHA-2 ciphersuites from TLS 1.0 and 1.1 handshakes
2019-09-06 09:31:14 +10:00
test-sig.conf
add wolfSSL_get_cipher_suite_from_name(); add flags arg to GetCipherSuiteFromName(); fix GetCipherSuiteFromName() to prevent spurious substring matching; add SUITE_ALIAS() macros for use defining CipherSuiteInfo, and add CipherSuiteInfo.flags slot and associated logic, to allow alternative cipher names to be recognized; add "CCM8" cipher name variants wherever applicable, including the unit.test conf files, to recognize and test the OpenSSL variants; add tests in client_test() and server_test() to confirm correct forward and backward mapping of cipher names/aliases.
2020-11-11 22:47:47 -06:00
test-sm2.conf
SM2/SM3/SM4: Chinese cipher support
2023-07-04 13:36:28 +10:00
test-tls13-down.conf
update test conf to fix jenkins failures
2021-06-25 16:31:49 +09:00
test-tls13-ecc.conf
add wolfSSL_get_cipher_suite_from_name(); add flags arg to GetCipherSuiteFromName(); fix GetCipherSuiteFromName() to prevent spurious substring matching; add SUITE_ALIAS() macros for use defining CipherSuiteInfo, and add CipherSuiteInfo.flags slot and associated logic, to allow alternative cipher names to be recognized; add "CCM8" cipher name variants wherever applicable, including the unit.test conf files, to recognize and test the OpenSSL variants; add tests in client_test() and server_test() to confirm correct forward and backward mapping of cipher names/aliases.
2020-11-11 22:47:47 -06:00
test-tls13-pq-2.conf
Remove kyber-90s and route all kyber through wolfcrypt.
2022-11-30 17:17:28 -05:00
test-tls13-pq.conf
Kyber: Add option to build Kyber API
2022-09-13 10:07:27 -04:00
test-tls13-psk.conf
TLS 1.3 PSK: add option to require only PSK with DHE
2023-02-16 09:21:29 +10:00
test-tls13.conf
TLS 1.3: send ticket
2022-06-01 10:36:01 +10:00
test-tls-downgrade.conf
Check for TLS downgrade
2021-04-23 14:45:35 -07:00
test-trustpeer.conf
stunnel 5.61 support
2022-02-23 09:47:34 +01:00
test.conf
Add testing/docs for blocking write
2022-05-27 21:26:55 +02:00
TXT_DB.txt
Internal unit tests
2020-12-17 14:26:49 +01:00
unit.c
Port testing to wolfSSL threading interface
2023-08-04 10:49:39 +02:00
unit.h
test_dtls13_frag_ch_pq: make sure kyber5 is used
2023-10-09 12:54:11 +02:00
utils.h
Dump manual memio stream with WOLFSSL_DUMP_MEMIO_STREAM
2023-10-09 12:54:11 +02:00
w64wrapper.c
ZD16445
2023-08-24 10:53:26 +02:00

README 

Before creating any new configure files (.conf) read the CONF_FILES_README.md
Reference in New Issue View Git Blame Copy Permalink