aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/tests/suites
Commit message (Collapse)AuthorAgeFilesLines
* auth-cfg: Add RSA/PSS schemes for pubkey and rsa if enabled in strongswan.confTobias Brunner2017-11-081-0/+27
| | | | Also document the rsa/pss prefix.
* signature-params: Add helpers to parse/build ASN.1 algorithmIdentifier for ↵Tobias Brunner2017-11-081-0/+111
| | | | signature schemes
* ikev2: Enumerate RSA/PSS schemes and use them if enabledTobias Brunner2017-11-081-11/+16
|
* auth-cfg: Parse rsa/pss auth tokensTobias Brunner2017-11-081-0/+74
|
* auth-cfg: Store signature schemes as signature_params_t objectsTobias Brunner2017-11-082-8/+27
| | | | | Due to circular references the hasher_from_signature_scheme() helper does not take a signature_params_t object.
* signature-params: Add helper struct for signature scheme and parametersTobias Brunner2017-11-081-4/+124
|
* unit-tests: Add RSA-PSS signature tests with specific saltsTobias Brunner2017-11-081-92/+818
|
* unit-tests: Warn if we skip RSA tests due to dependenciesTobias Brunner2017-11-081-0/+11
|
* unit-tests: Add FIPS 186-4 RSASSA-PSS test vectorsTobias Brunner2017-11-081-0/+1629
| | | | | | | | Since not all implementations allow setting a specific salt value when generating signatures (e.g. OpenSSL doesn't), we are often limited to only using the test vectors with salt length of 0. We also exclude test vectors with SHA-1, SHA-224 and SHA-384.
* unit-tests: Create and verify some RSA PSS signaturesTobias Brunner2017-11-081-3/+25
|
* unit-tests: Add FIPS 186-4 RSA test vectorsTobias Brunner2017-11-081-5/+2428
| | | | Excluding SHA-224 and the stuff from FIPS 186-2 (SHA-1, 1024 bit keys).
* signature-params: Add functions to parse/build ASN.1 RSASSA-PSS paramsTobias Brunner2017-11-081-0/+230
|
* asn1: Add function to generate an ASN.1 integer from an uint64_tTobias Brunner2017-11-081-6/+35
|
* private-key: Add optional parameters argument to sign() methodTobias Brunner2017-11-083-6/+6
|
* public-key: Add optional parameters argument to verify() methodTobias Brunner2017-11-083-13/+18
|
* ikev2: Don't use SHA-1 for RFC 7427 signature authenticationTobias Brunner2017-11-081-3/+3
| | | | | | RFC 8247 demoted it to MUST NOT. References #2427.
* utils: Add helper function to parse time spans from stringsTobias Brunner2017-11-021-0/+52
|
* traffic-selector: Use single buffer for both address familiesTobias Brunner2017-08-171-9/+29
| | | | | | | | The generic field of size 0 in the union that was used previously triggered index-out-of-bounds errors with the UBSAN sanitizer that's used on OSS-Fuzz. Since the two family specific union members don't really provide any advantage, we can just use a single buffer for both families to avoid the errors.
* unit-tests: Double escape backslashes in Windows paths in settings testTobias Brunner2017-07-281-2/+6
| | | | | That's required when these are used as include paths in settings file strings.
* unit-tests: Updated asn1-parser testsAndreas Steffen2017-05-291-1/+105
|
* linked-list: Change return value of find_first() and signature of its callbackTobias Brunner2017-05-261-15/+66
| | | | This avoids the unportable five pointer hack.
* linked-list: Change interface of callback for invoke_function()Tobias Brunner2017-05-261-3/+7
| | | | This avoids the unportable five pointer hack.
* linked-list: invoke_offset() doesn't take any additional arguments anymoreTobias Brunner2017-05-261-9/+11
|
* Change interface for enumerator_create_filter() callbackTobias Brunner2017-05-261-15/+35
| | | | | This avoids the unportable 5 pointer hack, but requires enumerating in the callback.
* utils: chunk_from_hex() skips optional 0x prefixAndreas Steffen2017-03-061-10/+11
|
* host: Don't log port if it is zeroTobias Brunner2017-03-021-5/+5
|
* traffic-selector: Allow calling set_address() for any traffic selectorTobias Brunner2017-02-271-2/+10
| | | | | Users may check is_host(), is_dynamic() or includes() before calling this if restrictions are required (most actually already do).
* Moved Ed25519 tests to libstrongswanAndreas Steffen2016-12-141-0/+527
|
* unit-tests: Completed coverage of hasher, crypter and libnttfftAndreas Steffen2016-12-142-34/+47
|
* gmp: Support of SHA-3 RSA signaturesAndreas Steffen2016-09-224-44/+55
|
* mgf1: Refactored MGF1 as an XOFAndreas Steffen2016-09-212-43/+61
|
* chunk: Skip all leading zero bytes in chunk_skip_zero() not just the firstTobias Brunner2016-04-041-12/+16
|
* string: Gracefully handle NULL in str*eq() macrosTobias Brunner2016-04-041-0/+78
|
* Use standard unsigned integer typesAndreas Steffen2016-03-2410-77/+77
|
* Implemented IPv4/IPv6 subnet and range identitiesAndreas Steffen2016-03-101-48/+207
| | | | | | The IKEv1 IPV4_ADDR_SUBNET, IPV6_ADDR_SUBNET, IPV4_ADDR_RANGE and IPV6_ADDR_RANGE identities have been fully implemented and can be used as owners of shared secrets (PSKs).
* linked-list: Add method to compare two lists of objects for equalityTobias Brunner2016-03-081-0/+91
|
* auth-cfg: Make IKE signature schemes configurableTobias Brunner2016-03-041-0/+122
| | | | | | This also restores the charon.signature_authentication_constraints functionality, that is, if no explicit IKE signature schemes are configured we apply all regular signature constraints as IKE constraints.
* unit-tests: The pseudonym RDN is now recognized, so use something more exoticTobias Brunner2016-01-281-3/+3
|
* array: Add an insert/create function for value based arraysMartin Willi2015-12-071-0/+43
|
* settings: Add settings_value_as_uint64() helper functionTobias Brunner2015-11-111-0/+24
|
* traffic-selector: Don't end printf'ed list of traffic selectors with a spaceTobias Brunner2015-11-101-3/+3
|
* testing: Updated hasher testsAndreas Steffen2015-11-061-0/+75
|
* Explicitly mention SHA2 algorithm in BLISS OIDs and signature schemesAndreas Steffen2015-11-062-30/+38
|
* unit-tests: Add a test to verify that there is no partial matching of RDNsTobias Brunner2015-09-091-0/+1
|
* Fixed some typos, courtesy of codespellTobias Brunner2015-08-271-1/+1
|
* unit-tests: Additional test cases to increase coverageTobias Brunner2015-08-272-9/+611
|
* identification: Add hash() methodTobias Brunner2015-08-061-1/+90
| | | | | | | Compared to hashing the encoding we can ignore string types of RDNs when hashing DNs, making hash() compatible to equals() that does the same. Fixes #991.
* unit-tests: Add unit tests for settings_t.load_string[_section]Tobias Brunner2015-07-281-8/+113
|
* settings: Add support for multi-line stringsTobias Brunner2015-07-281-8/+17
| | | | Unterminated strings are now an error.
* host: Properly handle NULL in host_create_from_string[_and_family]Tobias Brunner2015-07-271-0/+6
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-02 04:36:36 +0000