| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
| |
We still try to calculate these directly as it can avoid a dependency on
the pkcs1 or other plugins. But for e.g. PGPv3 keys we need to delegate the
actual fingerprint calculation to the pgp plugin.
|
| | |
|
| |\
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Adds a config file and build script for Travis CI. Makes the unit tests
buildable with Clang, and test vectors are now actually verified when
the unit tests are executed.
Also adds options to run only selected test suites and to increase the debug
level during unit tests.
The --enable/disable configure options have been reordered and grouped, and
an option to enable all the features has been added (plus an option to
select a specific printf-hook implementation).
|
| | |
| |
| |
| |
| |
| |
| | |
Not sure if 4 jobs is optimal, but according to the docs each build host
has 1.5 virtual cores available (although "getconf _NPROCESSORS_ONLN"
returns 32, which is probably the number of real cores underneath), so
more jobs might not actually reduce the build time much more.
|
| | |
| |
| |
| |
| |
| |
| |
| | |
The Blowfish and Twofish implementations provided by the gcrypt plugin
only support specific key lengths, which we don't know when testing
against vectors (either during unit tests or during algorithm
registration). The on_create test with a specific key length will be
skipped anyway, so there is no point in treating this failure differently.
|
| | |
| |
| |
| |
| | |
The TESTS_VERBOSITY option takes an integer from -1 to 4 that sets the
default debug level.
|
| | |
| |
| |
| |
| | |
The TESTS_SUITES environment variable can contain a comma separated list
of names of test suites to run.
|
| | |
| |
| |
| |
| |
| |
| |
| | |
Previously, the {ns}.crypto_test.on_add option had to be enabled to
actually test the algorithms, which we can't enforce for the tests in
the test_runner as the option is already read when the crypto factory
is initialized. Even so, we wouldn't want to do this for every unit
test, which would be the result of enabling that option.
|
| | |
| |
| |
| |
| | |
We can't test Vstr as it does not properly handle negative int arguments
for custom format callbacks, so some of the enum tests would fail.
|
| | | |
|
| | |
| |
| |
| |
| | |
Since the installation of all packages alone takes several minutes this
should speed up some test cases.
|
| | |
| |
| |
| | |
But build the distribution only once.
|
| | | |
|
| | |
| |
| |
| |
| | |
This makes the tests work with clang, which does not implement said
builtin.
|
| | | |
|
| | |
| |
| |
| | |
This avoids any clashes with existing functions in the monolithic build.
|
| | |
| |
| |
| |
| |
| |
| |
| | |
Because GCC does not adhere to the priorities defined for constructors
when building with --enable-monolithic (not sure if it was just luck
that it worked in non-monolithic mode - anyway, it's not very portable)
function registration would fail because the hashtable would not be
created yet.
|
| | | |
|
| | |
| |
| |
| | |
This has probably no real practical use, but it simplifies testing.
|
| | | |
|
| | | |
|
| |/ |
|
| |
|
|
|
|
|
|
| |
Clang does not initialize padding in union members so hashing the
complete "arg" union could lead to different hashes if the hashed
plugin_feature_t does not have static storage duration.
Fixes #549.
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
As --help is counted as command as well, the array is not null-terminated
and we have to check for MAX_COMMANDS.
Fixes #550.
|
| |
|
|
|
|
|
| |
Recent versions of NM will call need_secrets() as long as it returns TRUE,
but then fail as the number of calls is limited by an assert.
Fixes #547.
|
| |
|
|
|
|
|
| |
Memory beyond the end of the array was moved when array elements in the
second half of an array were removed.
Fixes #548.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
config
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Closes #539.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
A valgrind analysis of libstrongswan revealed an invalid read of 1 in
the function starts_with(). A more thorough analysis proved this to be
true and showed that with a specially crafted config file (e.g. a single
'#'-character not followed by a newline), the parser might even
interpret the random memory contents following the allocated buffer as
part of the configuration file.
The way the parser is designed, it must be able to skip an inserted
'\0' and continue parsing. Since it is not able to skip two '\0'
characters, the 'fix' of allocating two more bytes than the size of the
parsed file and setting them to '\0' seems to be a safe bet.
Signed-off-by: Thomas Egerer <thomas.egerer@secunet.com>
|
| |
|
|
|
|
|
|
| |
Older autoconf versions (e.g. on CentOS 6.5) produce an empty else block
for the removed empty argument, which the shell then trips over when
executing ./configure.
Fixes #536.
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
constructors and built some unit tests for the latter)
|
| | |
|
| | |
|
| |
|
|
|
|
| |
It worked from the repository, where strongswan.conf.5.main is generated
in the build dir, but not from the distribution where it is located in
the source dir, so explicitly create it in the source dir.
|
