Age | Commit message (Collapse) | Author | Files | Lines |
|
first implemented in ossl_patched branch
uses dynamic NIDs
Signed-off-by: Sergei Ianovich <sergei.ianovich@ya.ru>
|
|
|
|
Output something in `openssl list -providers` so it's merrier.
Signed-off-by: Vitaly Chikunov <vt@altlinux.org>
|
|
We add the macs for the provider as wrappers around the EVP_MD
implementations designed for ENGINEs. This is not the most elegant,
but it does the job.
When an algorithm has an OID, it's included in the OSSL_ALGORITHM name
as an alias. This is the way to avoid having to register the OIDs in
OpenSSL proper.
|
|
We add the digests for the provider as wrappers around the routines
designed for ENGINEs. This is not the most elegant, but it does the
job.
When an algorithm has an OID, it's included in the OSSL_ALGORITHM name
as an aliase. This is the way to avoid having to register the OIDs in
OpenSSL proper.
test/01-digest.t is modified to test the provider as well.
|
|
We add the ciphers for the provider as wrappers around the routines
designed for ENGINEs. This is not the most elegant, but it does the
job.
When an algorithm has an OID, it's included in the OSSL_ALGORITHM name
as an aliase. This is the way to avoid having to register the OIDs in
OpenSSL proper.
test/03-encrypt.t is modified to test the provider as well.
|
|
This makes space for provider tests.
As a beginning, test/00-provider.t is added. It corresponds to
test/00-engine.t.
All other test/*.t are currently skipped unless the engine is tested.
They will be re-enabled as support for each algorithm type is added in
the provider code.
|
|
|
|
The following programs had a hard coded load of the gost engine.
This changes them to rely more on the testing environment, and to
load engines through configuration files.
This affects: test_ciphers.c, test_context.c, test_derive.c,
test_digest.c, test_params.c, test_sign.c, test_tls.c
|
|
'prove' is a well developed TAP harness program, there's no real need
to write one's own.
We do need to set certain paths properly for the appropriate 'openssl'
program to be run. We do that with a 'prove' plugin (WrapOpenSSL.pm)
that simply amends the appropriate system environment variables, given
a number of cmake generated environment variables that indicate where
OpenSSL files reside.
|
|
|
|
|
|
|
|
* GOST key agreement cofactor fix
|
|
|
|
|
|
* Tests that gost-engine correctly computes the public key from the
private key. (Twice -- Alice and Bob.)
* Tests that gost-engine correctly computes the derived shared key.
(Twice -- Alice and Bob, should be identical.)
|
|
|
|
Cleanup tests
|
|
It's set correctly when these tests are started with ctest, and
otherwise, we leave it to the user to decide. Either way, we set it
to a bogus value when it isn't previously set...
|
|
|
|
Not all systems recognise LD_LIBRARY_PATH, and we therefore need to
set other environment variables.
Currently set:
- LD_LIBRARY_PATH (Linux and ELF HP-UX)
- DYLD_LIBRARY_PATH (MacOS X)
- LIBPATH (AIX, OS/2)
More can be added as the need arises.
Fixes #146
|
|
When the environment variable OPENSSL_ROOT_DIR is defined, we need to
ensure that PATH and LD_LIBRARY_PATH are properly affected.
This is a little bit complicated, since OPENSSL_ROOT_DIR could point
at an OpenSSL build directory as well as an OpenSSL installation
tree. Fortunately, it's easy to detect the difference; if it's a
build tree, there's a sub-directory 'apps'.
For installation trees, it's further complicated by OpenSSL's
'multilib' target attribute, which exists for platforms that support
directory separated libraries for differing bitness (typically 32-bit
and 64-bit libraries). We trust pkg-config to give us the answer.
Binaries are easier, they live in $OPENSL_ROOT_DIR/bin.
Fixes #146
|
|
At least Fedora 30 will have no Test::More anymore. Test::More is
deprecated, as well as Test::Stream and Test2 is a recommended
replacement.
Luckily, gost-engine's use of Test::More is limited to functions which
are compatible with implementations in Test2, so only module import and
test plan announcement need to change.
Also, on Fedora 29 perl 5.28 is very picky on undefined variables.
|
|
If OPENSSL_ROOT_DIR is specified pass it to the perl tests, and set its
value as LD_LIBRARY_PATH, if unset. This allows to run tests for custom
openssl build without manually setting proper env.
|
|
|
|
|
|
Co-authored-by: Mikhail Gordeev <obirvalger@altlinux.org>
|
|
|
|
(*) convert 'openssl ciphers | grep ...' into Test:More syntax
(*) enable some tests on travis-ci (04 is yet broken)
|
|
|
|
|
|
|