Skip to content

O
openssl

btwise / openssl

通知 1
Star 0
Fork 0
O
openssl

体验新版 GitCode,发现更多精彩内容 >>

切换分支/标签
  1. 28 11月, 2020 1 次提交
  3. 18 10月, 2020 1 次提交
  5. 09 10月, 2020 1 次提交
  7. 08 10月, 2020 1 次提交
  9. 18 9月, 2020 1 次提交
  11. 17 7月, 2020 1 次提交
  13. 05 7月, 2020 3 次提交
  15. 03 7月, 2020 1 次提交
  17. 29 6月, 2020 4 次提交
  19. 27 6月, 2020 1 次提交
  21. 23 6月, 2020 1 次提交
  23. 22 6月, 2020 1 次提交
  25. 17 6月, 2020 1 次提交
    • S
      Add ACVP fips module tests · 4f2271d5
      Shane Lontis 提交于 
      For FIPS validation purposes - Automated Cryptographic Validation Protocol (ACVP) tests need to be
performed. (See https://github.com/usnistgov/ACVP). These tests are very similiar to the old CAVS tests.

This PR uses a hardwired subset of these test vectors to perform similiar operations,
to show the usage and prove that the API's are able to perform the required operations.
It may also help with communication with the lab (i.e- The lab could add a test here to show
a unworking use case - which we can then address).

The EVP layer performs these tests instead of calling lower level API's
as was done in the old FOM.
Some of these tests require access to internals that are not normally allowed/required.

The config option 'acvp_tests' (enabled by default) has been added so that this
access may be removed.

The mechanism has been implemented as additional OSSL_PARAM values that can be set and get.
A callback mechanism did not seem to add any additional benefit.
These params will not be added to the gettables lists.
Reviewed-by: NMatt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/11572)
      4f2271d5
  27. 16 5月, 2020 1 次提交
  29. 08 5月, 2020 1 次提交
  31. 20 4月, 2020 1 次提交
  33. 17 4月, 2020 1 次提交
  35. 27 2月, 2020 3 次提交
  37. 15 12月, 2019 1 次提交
    • R
      Deprecate most of debug-memory · 742ccab3
      Rich Salz 提交于 
      Fixes #8322

The leak-checking (and backtrace option, on some platforms) provided
by crypto-mdebug and crypto-mdebug-backtrace have been mostly neutered;
only the "make malloc fail" capability remains.  OpenSSL recommends using
the compiler's leak-detection instead.

The OPENSSL_DEBUG_MEMORY environment variable is no longer used.
CRYPTO_mem_ctrl(), CRYPTO_set_mem_debug(), CRYPTO_mem_leaks(),
CRYPTO_mem_leaks_fp() and CRYPTO_mem_leaks_cb() return a failure code.
CRYPTO_mem_debug_{malloc,realloc,free}() have been removed.  All of the
above are now deprecated.

Merge (now really small) mem_dbg.c into mem.c
Reviewed-by: NPaul Dale <paul.dale@oracle.com>
Reviewed-by: NRichard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/10572)
      742ccab3
  39. 13 12月, 2019 1 次提交
    • R
      Add better support for using deprecated symbols internally · 46994f71
      Richard Levitte 提交于 
      OPENSSL_SUPPRESS_DEPRECATED only does half the job, in telling the
deprecation macros not to add the warning attribute.  However, with
'no-deprecated', the symbols are still removed entirely, while we
might still want to use them internally.

The solution is to permit <openssl/opensslconf.h> macros to be
modified internally, such as undefining OPENSSL_NO_DEPRECATED in this
case.

However, with the way <openssl/opensslconf.h> includes
<openssl/macros.h>, that's easier said than done.  That's solved by
generating <openssl/configuration.h> instead, and add a new
<openssl/opensslconf.h> that includes <openssl/configuration.h> as
well as <openssl/macros.h>, thus allowing to replace an inclusion of
<openssl/opensslconf.h> with this:

    #include <openssl/configuration.h>

    #undef OPENSSL_NO_DEPRECATED
    #define OPENSSL_SUPPRESS_DEPRECATED

    #include <openssl/macros.h>

Or simply add the following prior to any other openssl inclusion:

    #include <openssl/configuration.h>

    #undef OPENSSL_NO_DEPRECATED
    #define OPENSSL_SUPPRESS_DEPRECATED

Note that undefining OPENSSL_NO_DEPRECATED must never be done by
applications, since the symbols must still be exported by the
library.  Internal test programs are excempt of this rule, though.
Reviewed-by: NTim Hudson <tjh@openssl.org>
Reviewed-by: NTomas Mraz <tmraz@fedoraproject.org>
Reviewed-by: NPaul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/10608)
      46994f71
  41. 12 12月, 2019 1 次提交
  43. 29 11月, 2019 1 次提交
  45. 07 11月, 2019 1 次提交
  47. 13 10月, 2019 1 次提交
  49. 17 9月, 2019 1 次提交
  51. 12 9月, 2019 1 次提交
    • R
      Rework test/run_tests.pl to support selective verbosity and TAP copy · e3d9a6b5
      Richard Levitte 提交于 
      This includes a complete rework of how we use TAP::Harness, by adding
a TAP::Parser subclass that allows additional callbacks to be passed
to perform what we need.  The TAP::Parser callbacks we add are:

    ALL         to print all the TAP output to a file (conditionally)
                to collect all the TAP output to an array (conditionally)
    EOF         to print all the collected TAP output (if there is any)
                if any subtest failed

To get TAP output to file, the environment variable HARNESS_TAP_COPY
must be defined, with a file name as value.  That file will be
overwritten unconditionally.

To get TAP output displayed on failure, the make variable VERBOSE_FAILURE
or VF must be defined with a non-emoty value.

Additionally, the output of test recipe names has been changed to only
display its basename.
Reviewed-by: NMatt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/9862)
      e3d9a6b5
  53. 15 8月, 2019 1 次提交
  55. 12 8月, 2019 1 次提交
  57. 08 8月, 2019 1 次提交
  59. 10 6月, 2019 1 次提交
  61. 30 5月, 2019 1 次提交
  63. 29 5月, 2019 1 次提交
  65. 03 5月, 2019 1 次提交