aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/tests
Commit message (Collapse)AuthorAgeFilesLines
* unit-tests: Rename targets for libstrongswan and kernel-netlinkThomas Egerer2017-11-091-5/+5
| | | | | | | | | libstrongswan and kernel-netlink are the only two components which do not adhere to the naming scheme used for all other tests. If the tests are run by an external application this imposes problems due to clashing names. Signed-off-by: Thomas Egerer <thomas.egerer@secunet.com>
* auth-cfg: Add RSA/PSS schemes for pubkey and rsa if enabled in strongswan.confTobias Brunner2017-11-081-0/+27
| | | | Also document the rsa/pss prefix.
* signature-params: Add helpers to parse/build ASN.1 algorithmIdentifier for ↵Tobias Brunner2017-11-081-0/+111
| | | | signature schemes
* ikev2: Enumerate RSA/PSS schemes and use them if enabledTobias Brunner2017-11-081-11/+16
|
* auth-cfg: Parse rsa/pss auth tokensTobias Brunner2017-11-081-0/+74
|
* auth-cfg: Store signature schemes as signature_params_t objectsTobias Brunner2017-11-082-8/+27
| | | | | Due to circular references the hasher_from_signature_scheme() helper does not take a signature_params_t object.
* signature-params: Add helper struct for signature scheme and parametersTobias Brunner2017-11-081-4/+124
|
* unit-tests: Add RSA-PSS signature tests with specific saltsTobias Brunner2017-11-081-92/+818
|
* unit-tests: Warn if we skip RSA tests due to dependenciesTobias Brunner2017-11-081-0/+11
|
* unit-tests: Add ability to issue a warning message for a test caseTobias Brunner2017-11-083-6/+116
| | | | | This way we can warn if we e.g. skipped actually doing something due to dependencies (otherwise the test case would just appear to have succeeded).
* unit-tests: Add FIPS 186-4 RSASSA-PSS test vectorsTobias Brunner2017-11-081-0/+1629
| | | | | | | | Since not all implementations allow setting a specific salt value when generating signatures (e.g. OpenSSL doesn't), we are often limited to only using the test vectors with salt length of 0. We also exclude test vectors with SHA-1, SHA-224 and SHA-384.
* unit-tests: Create and verify some RSA PSS signaturesTobias Brunner2017-11-081-3/+25
|
* unit-tests: Add FIPS 186-4 RSA test vectorsTobias Brunner2017-11-081-5/+2428
| | | | Excluding SHA-224 and the stuff from FIPS 186-2 (SHA-1, 1024 bit keys).
* signature-params: Add functions to parse/build ASN.1 RSASSA-PSS paramsTobias Brunner2017-11-083-1/+233
|
* asn1: Add function to generate an ASN.1 integer from an uint64_tTobias Brunner2017-11-081-6/+35
|
* private-key: Add optional parameters argument to sign() methodTobias Brunner2017-11-083-6/+6
|
* public-key: Add optional parameters argument to verify() methodTobias Brunner2017-11-083-13/+18
|
* ikev2: Don't use SHA-1 for RFC 7427 signature authenticationTobias Brunner2017-11-081-3/+3
| | | | | | RFC 8247 demoted it to MUST NOT. References #2427.
* utils: Add helper function to parse time spans from stringsTobias Brunner2017-11-021-0/+52
|
* traffic-selector: Use single buffer for both address familiesTobias Brunner2017-08-171-9/+29
| | | | | | | | The generic field of size 0 in the union that was used previously triggered index-out-of-bounds errors with the UBSAN sanitizer that's used on OSS-Fuzz. Since the two family specific union members don't really provide any advantage, we can just use a single buffer for both families to avoid the errors.
* Fixed some typos, courtesy of codespellTobias Brunner2017-08-071-1/+1
|
* unit-tests: Double escape backslashes in Windows paths in settings testTobias Brunner2017-07-281-2/+6
| | | | | That's required when these are used as include paths in settings file strings.
* unit-tests: iv_gen_seq has a dependency on RNG_STRONGTobias Brunner2017-07-281-1/+1
| | | | We currently don't have an RNG in Windows builds.
* unit-tests: Updated asn1-parser testsAndreas Steffen2017-05-291-1/+105
|
* linked-list: Change return value of find_first() and signature of its callbackTobias Brunner2017-05-261-15/+66
| | | | This avoids the unportable five pointer hack.
* linked-list: Change interface of callback for invoke_function()Tobias Brunner2017-05-261-3/+7
| | | | This avoids the unportable five pointer hack.
* linked-list: invoke_offset() doesn't take any additional arguments anymoreTobias Brunner2017-05-261-9/+11
|
* Change interface for enumerator_create_filter() callbackTobias Brunner2017-05-261-15/+35
| | | | | This avoids the unportable 5 pointer hack, but requires enumerating in the callback.
* unit-tests: Fix test_chunk_eq() if arguments have side-effectsTobias Brunner2017-05-241-1/+1
|
* utils: chunk_from_hex() skips optional 0x prefixAndreas Steffen2017-03-061-10/+11
|
* host: Don't log port if it is zeroTobias Brunner2017-03-021-5/+5
|
* traffic-selector: Allow calling set_address() for any traffic selectorTobias Brunner2017-02-271-2/+10
| | | | | Users may check is_host(), is_dynamic() or includes() before calling this if restrictions are required (most actually already do).
* unit-tests: Allow default test timeout to be configured via compile optionThomas Egerer2017-02-141-0/+2
| | | | Signed-off-by: Thomas Egerer <thomas.egerer@secunet.com>
* Moved Ed25519 tests to libstrongswanAndreas Steffen2016-12-143-1/+531
|
* unit-tests: Completed coverage of hasher, crypter and libnttfftAndreas Steffen2016-12-142-34/+47
|
* gmp: Support of SHA-3 RSA signaturesAndreas Steffen2016-09-224-44/+55
|
* unit-tests: MGF1 tests depend on an XOF implementation not just a hash functionTobias Brunner2016-09-211-2/+2
| | | | | If the mgf1 plugin was not enabled (e.g. with the default configure options) the tests failed.
* mgf1: Refactored MGF1 as an XOFAndreas Steffen2016-09-212-43/+61
|
* unit-tests: Defining TESTS_RUNNERS allows to only run specific test runnersTobias Brunner2016-06-172-1/+33
|
* configure: Check for and explicitly link against -latomicMartin Willi2016-06-141-1/+1
| | | | | Some C libraries, such as uClibc, require an explicit link for some atomic functions. Check for any libatomic, and explcily link it.
* chunk: Skip all leading zero bytes in chunk_skip_zero() not just the firstTobias Brunner2016-04-041-12/+16
|
* string: Gracefully handle NULL in str*eq() macrosTobias Brunner2016-04-041-0/+78
|
* Use standard unsigned integer typesAndreas Steffen2016-03-2411-78/+78
|
* Implemented IPv4/IPv6 subnet and range identitiesAndreas Steffen2016-03-101-48/+207
| | | | | | The IKEv1 IPV4_ADDR_SUBNET, IPV6_ADDR_SUBNET, IPV4_ADDR_RANGE and IPV6_ADDR_RANGE identities have been fully implemented and can be used as owners of shared secrets (PSKs).
* linked-list: Add method to compare two lists of objects for equalityTobias Brunner2016-03-081-0/+91
|
* auth-cfg: Make IKE signature schemes configurableTobias Brunner2016-03-043-0/+124
| | | | | | This also restores the charon.signature_authentication_constraints functionality, that is, if no explicit IKE signature schemes are configured we apply all regular signature constraints as IKE constraints.
* unit-tests: The pseudonym RDN is now recognized, so use something more exoticTobias Brunner2016-01-281-3/+3
|
* array: Add an insert/create function for value based arraysMartin Willi2015-12-071-0/+43
|
* settings: Add settings_value_as_uint64() helper functionTobias Brunner2015-11-111-0/+24
|
* traffic-selector: Don't end printf'ed list of traffic selectors with a spaceTobias Brunner2015-11-101-3/+3
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-02 06:08:24 +0000