summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* SKIP tests/suite/eagain if libev not availabletmp-soft-libevTim Rühsen2020-01-072-8/+12
| | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* Merge branch 'topsrcdir' into 'master'Tim Rühsen2020-01-065-5/+5
|\ | | | | | | | | tests/Makefile.am: use absolute top_srcdir for GNUTLS_PRIORITY_FILE See merge request gnutls/gnutls!1156
| * tests/Makefile.am: use absolute top_srcdir for GNUTLS_PRIORITY_FILEDimitri John Ledkov2020-01-065-5/+5
|/ | | | | | | | | Some tests, e.g. in suite/tls-fuzzer execute scripts from sub-directories, making the relative path to system.prio in the environment pointing to a non-existent file. Export system.prio testsuite file as an absolute path to avoid this issue. Signed-off-by: Dimitri John Ledkov <xnox@ubuntu.com>
* Merge branch 'estanglerbm-getrandom' into 'master'Nikos Mavrogiannopoulos2020-01-051-1/+6
|\ | | | | | | | | | | | | Fixes dummy getrandom() when errno = EAGAIN. Closes #892 See merge request gnutls/gnutls!1150
| * Fixes dummy getrandom() when errno = EAGAIN.Edward Stangler2020-01-031-1/+6
| | | | | | | | | | | | Fixes #892. Signed-off-by: Edward Stangler <estangler@bradmark.com>
* | Merge branch 'tmp-ci-remove-command-concat' into 'master'Nikos Mavrogiannopoulos2020-01-032-55/+73
|\ \ | | | | | | | | | | | | | | | | | | Remove && command concatenation in .gitlab-ci.yml Closes #896 See merge request gnutls/gnutls!1152
| * | doc: updated epub.texi from gnutls.texiNikos Mavrogiannopoulos2020-01-031-3/+7
| | | | | | | | | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
| * | .gitlab-ci.yml: identify on runtime to db2epub directoryNikos Mavrogiannopoulos2020-01-031-2/+3
| | | | | | | | | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
| * | Remove && command concatenation in .gitlab-ci.ymlTim Rühsen2020-01-031-52/+65
|/ / | | | | | | | | | | | | | | As it turns out, `set -e` doesn't work if one of the commands fail, maybe except the last command. Seen, tested and reproduced on Fedora28 image. Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* | Merge branch 'tmp-check-fuzz' into 'master'Tim Rühsen2020-01-0318-99/+73
|\ \ | | | | | | | | | | | | | | | | | | UB+ASAN: Fail tests if UB detected Closes #882 and #878 See merge request gnutls/gnutls!1136
| * | .gitlab-ci.yml: merged ASAN and UBSAN runstmp-check-fuzzNikos Mavrogiannopoulos2020-01-031-35/+8
| | | | | | | | | | | | | | | | | | | | | This in addition to merging the two CI runs, it also attempts to run the fuzz code under SHANI for CI. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
| * | Fix '-Werror=unused-const-variable=' in fuzz/Tim Rühsen2020-01-032-0/+14
| | | | | | | | | | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
| * | Fix NULL ptr access in _gnutls_iov_iter_next()Tim Rühsen2020-01-031-0/+6
| | | | | | | | | | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
| * | Use check_for_datefudge in testsTim Rühsen2020-01-035-38/+12
| | | | | | | | | | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
| * | Fix "left shift cannot be represented in type 'int'" in hello_ext.[ch]Tim Rühsen2020-01-032-3/+3
| | | | | | | | | | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
| * | Fix 2x -Wunused-function in tests/Tim Rühsen2020-01-032-0/+4
| | | | | | | | | | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
| * | certtool-cfg.c: Silence -Wunused-variable if HAVE_IPV6 not setTim Rühsen2020-01-031-1/+2
| | | | | | | | | | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
| * | status_request.c: Silence -Wsign-compareTim Rühsen2020-01-031-1/+1
| | | | | | | | | | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
| * | rnd-fuzzer.c: Suppress shift sanitization checkTim Rühsen2020-01-031-0/+2
| | | | | | | | | | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
| * | handshake.c: Suppress warning in fuzzing buildTim Rühsen2020-01-031-0/+1
| | | | | | | | | | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
| * | Fix implicit value change in verify-high.cTim Rühsen2020-01-031-10/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | verify-high.c:284:7: runtime error: implicit conversion from type 'size_t' (aka 'unsigned long') of value 15421545260338 418178 (64-bit, unsigned) to type 'uint32_t' (aka 'unsigned int') changed the value to 437555714 (32-bit, unsigned) Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
| * | UBSAN: Fail tests if UB detectedTim Rühsen2020-01-031-13/+12
|/ / | | | | | | | | | | | | Suppressions are in devel/ubsan.supp. Suppressions only work on recoverable checks. Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* | Merge branch 'tmp-libev' into 'master'Nikos Mavrogiannopoulos2020-01-03125-44673/+286
|\ \ | |/ |/| | | | | | | | | ecore cli: updated and rewritten to use libev Closes #884 See merge request gnutls/gnutls!1148
| * tests/suite: do not include scripts into disttmp-libevNikos Mavrogiannopoulos2020-01-031-5/+2
| | | | | | | | | | | | This part of the test suite is only run on CI. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
| * ecore cli: updated and rewritten to use libevNikos Mavrogiannopoulos2020-01-03125-44668/+284
|/ | | | | | | | | That removes a lot of code that was not necessary in the gnutls test suite. Resolves: #884 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* .gitlab-ci.yml: use separate images for mingw and fedora buildsNikos Mavrogiannopoulos2020-01-031-5/+6
| | | | | | This should result to faster image loading for CI builds. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* Merge branch 'tmp-fix-slow-tests' into 'master'Tim Rühsen2020-01-021-8/+9
|\ | | | | | | | | tests: use newer nettle APIs in cipher-override.c See merge request gnutls/gnutls!1149
| * tests: use newer nettle APIs in cipher-override.cNikos Mavrogiannopoulos2020-01-021-8/+9
|/ | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* Merge branch 'tmp-update-copyright' into 'master'Tim Rühsen2020-01-022-2/+3
|\ | | | | | | | | doc: updated copyrights for 2020 See merge request gnutls/gnutls!1147
| * doc: updated copyrights for 2020tmp-update-copyrightNikos Mavrogiannopoulos2020-01-012-2/+3
|/ | | | | | | This updates the copyright year for documentation and excludes gnulib files from the copyright check. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* Merge branch 'wip-arch-independent-scm' into 'master'Nikos Mavrogiannopoulos2020-01-013-3/+18
|\ | | | | | | | | | | | | guile: Arrange to make 'gnutls.scm' architecture-independent. Closes #838 See merge request gnutls/gnutls!1121
| * guile: Arrange to make 'gnutls.scm' architecture-independent.Ludovic Courtès2019-12-263-3/+18
| | | | | | | | | | | | | | | | | | | | | | | | Fixes #838. Reported by Andreas Metzler. * configure.ac: Define and substitute 'maybe_guileextensiondir'. * guile/Makefile.am (.in.scm): Substitute 'maybe_guileextensiondir'. * guile/modules/gnutls.in <top level>: Use @maybe_guileextensiondir@. Check if %LIBDIR is true. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
* | Merge branch 'fix-gost-bench' into 'master'Nikos Mavrogiannopoulos2019-12-304-13/+84
|\ \ | | | | | | | | | | | | Fix gnutls-cli compilation with GOST disabled See merge request gnutls/gnutls!1143
| * | cli: fix building with GOST disabledDmitry Eremin-Solenikov2019-12-291-0/+2
| | | | | | | | | | | | | | | | | | | | | Fix building gnutls-cli (benchmark part) with GOST keys support being disabled. Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * | cli: support building with OCSP and ANON disabledDmitry Eremin-Solenikov2019-12-293-13/+52
| | | | | | | | | | | | | | | | | | | | | Support gnutls-cli when building GnuTLS with OCSP and ANON authentication API disabled. Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * | serv: support building with OCSP disabledDmitry Eremin-Solenikov2019-12-292-2/+32
|/ / | | | | | | | | | | Support gnutls-serv when building GnuTLS with OCSP API disabled. Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
* | Merge branch 'gost-split-5' into 'master'Dmitry Eremin-Solenikov2019-12-297-8/+91
|\ \ | | | | | | | | | | | | Workaround for SChannel limitations See merge request gnutls/gnutls!1138
| * | tls12-server-kx-neg: add tests without GOST signature algorithmsDmitry Eremin-Solenikov2019-12-281-0/+20
| | | | | | | | | | | | | | | | | | | | | Add tests mimicking SChannel clients which are unable to send proper SignatureAlgorithms extension. Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * | SignatureAlgorithms: force-enable GOST signatures for GOST KXDmitry Eremin-Solenikov2019-12-286-8/+71
| | | | | | | | | | | | | | | | | | | | | | | | SChannel-based clients can not send GOST identifiers as a part of SignatureAlgorithms extension. To mitigate this forcefully enable GOST signature algorithms if client sends GOST ciphersuite. Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
* | | Merge branch 'gost-bench' into 'master'Nikos Mavrogiannopoulos2019-12-2712-16/+103
|\ \ \ | | | | | | | | | | | | | | | | Benchmark GOST ciphers/ciphersuites See merge request gnutls/gnutls!1142
| * | | benchmark: enable benchmarking of GOST CNT ciphersuite/KXDmitry Eremin-Solenikov2019-12-271-0/+55
| | | | | | | | | | | | | | | | Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * | | benchmark: support benchmarking GOST ciphers/MACsDmitry Eremin-Solenikov2019-12-271-0/+12
| | | | | | | | | | | | | | | | Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * | | benchmark: use mac key size instead of block sizeDmitry Eremin-Solenikov2019-12-271-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Use newly added gnutls_hmac_get_key_size() to get key size instead of assuming that key size = block size (incorrect for GOST 28147 IMIT). Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * | | crypto-api: add gnutls_hmac_get_key_size() functionDmitry Eremin-Solenikov2019-12-277-0/+24
| | | | | | | | | | | | | | | | | | | | | | | | Add gnutls_hmac_get_key_size() to retrieve MAC key size. Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
| * | | nettle/gost: remove gost28147_imit_initDmitry Eremin-Solenikov2019-12-273-12/+8
|/ / / | | | | | | | | | | | | | | | | | | Rewrite gost28147 imit code to clean up state and index on key setup to be sure that imit context is properly cleaned. Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
* | | Merge branch 'tmp-strict-x509-time' into 'master'Nikos Mavrogiannopoulos2019-12-2610-6/+201
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | Do not tolerate invalid DER time Closes #207 See merge request gnutls/gnutls!1141
| * | | x509: do not tolerate invalid DER timeNikos Mavrogiannopoulos2019-12-2610-6/+201
|/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This effectively reverts !400 and ensures that we no longer tolerate invalid DER time. This complements the previous commit by Lili Quan and ensures we provide the --disable-strict-der-time backwards compatibility option. Resolves: #207 Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* | | Merge branch 'tmp-certtool-crq' into 'master'Nikos Mavrogiannopoulos2019-12-2310-8/+194
|\ \ \ | | | | | | | | | | | | | | | | certtool: always set extensions from template See merge request gnutls/gnutls!1130
| * | | certtool: always set extensions from templateNikos Mavrogiannopoulos2019-12-232-5/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Previously we would only set these extensions specific with add_extension when generating using --generate-certificate. The change makes sure these options are considered even when generating an extension from a certificate request. Issue reported on the mailing list. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
| * | | tests: check certificate generation from certificate requestNikos Mavrogiannopoulos2019-12-238-3/+185
| | | | | | | | | | | | | | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
View Lorry Controller Status