Age | Commit message (Collapse) | Author | |
---|---|---|---|
2012-08-22 | ssl: Test suite adjustments | Ingela Anderton Andin | |
2012-08-22 | ssl: TLS 1.2: fix Certificate Request list of Accepted Signatur/Hash ↵ | Andreas Schultz | |
combinations | |||
2012-08-22 | ssl: Add Signature Algorithms hello extension from TLS 1.2 | Andreas Schultz | |
This is also avoids triggering some bugs in OpenSSL. | |||
2012-08-22 | ssl: Add crypto support check (TLS 1.2 require sha256 support) | Ingela Anderton Andin | |
2012-08-22 | ssl: Run relevant tests for all SSL/TLS versions | Ingela Anderton Andin | |
2012-08-22 | ssl: Add TLS version switches to openssl tests | Andreas Schultz | |
2012-06-12 | ssl: Test case fixes | Ingela Anderton Andin | |
2012-06-08 | ssl: File handling optimization | Ingela Anderton Andin | |
Avoid cach validation with file:file_info/2 as this i too expensive and causes a bottleneck in the file server. Instead we expose a new API function ssl:clear_pem_cache/0 to deal with the problem. As we think it will be of occasional use and the normal case is that the cache will be valid we think it is the right thing to do. Convert file paths to binary representation in the ssl API module to avoid uncessarry calls in file later on. Also add sanity checks for openssl versions in testsuite due to new openssl bugs. | |||
2012-02-03 | Do not test sslv2 rejection with openssl-1.* | Ingela Anderton Andin | |
Reason sslv2 support seems to be by default turned of. | |||
2011-11-23 | Implementation of 1/n-1 splitting countermeasure Rizzo/Duong-Beast | Ingela Anderton Andin | |
The code is refactored and improved to make it easier to insert the 1/n-1 splitting countermeasure Rizzo/Duong-Beast that is really done in one function clause in ssl:record_split_bin/3 | |||
2011-11-15 | Work around bug in openss-1.0.0e | Ingela Anderton Andin | |
2011-11-15 | Avoid openssl processes surviving after test case has finished | Ingela Anderton Andin | |
If the server process is always closed first shutdown of the openssl process will be gracious | |||
2011-11-01 | Added PKCS-8 support in ssl | Ingela Anderton Andin | |
2011-03-07 | Workaround for application:start(crypto) inconsistency | Ingela Anderton Andin | |
2011-02-17 | Rename Suite Callback to Common Test Hook | Lukas Larsson | |
2011-02-17 | Fix formatting for ssl | Lukas Larsson | |
2011-02-17 | Add ts_install_scb to suite/0 | Lukas Larsson | |
2011-02-17 | Update ssl tests to conform with common_test standard | Lukas Larsson | |
2011-01-24 | Changed crypto start test so that it works as intended | Ingela Anderton Andin | |
2011-01-20 | Skip ssl and public key tests if crypto fails to start | Ingela Anderton Andin | |
2010-12-16 | Cache invalidation and consistent user closing | Ingela Anderton Andin | |
Added cache invalidation control of ssl certificates so that sessions will not be reused if file content is changed. There was a glitch in ssl:close that made it possible to to get eaddrinuse even though reuseadder-option was used. Also improved tests for better user-close handling. | |||
2010-11-30 | Updated tests to avoid test case failure for non interesting reasons | Ingela Anderton Andin | |
Such reason is that pulic key generation or mnesia:stop might occasionally take very long time. | |||
2010-10-07 | Anonymous cipher suites | Ingela Anderton Andin | |
For testing purposes ssl now also support some anonymous cipher suites when explicitly configured to do so. Also moved session cache tests to its own suite, so that timeout of end_per_testcase when the mnesia is used as session cache will not affect other test cases. | |||
2010-08-31 | Add tests for crypto RC4 bug | Ingela Anderton Andin | |
Changed test so that the test cases testing all different ciphers also sends data so that that the calls to crypto cipher functions are also tested. | |||
2010-06-29 | The server now verifies the client certificate verify message correctly, ↵ | Ingela Anderton Andin | |
instead of causing a case-clause. | |||
2010-06-11 | OTP-8695 New ssl default | Ingela Anderton Andin | |
Ssl has now switched default implementation and removed deprecated certificate handling. All certificate handling is done by the public_key application. | |||
2010-06-08 | Move dsa ticket to r14a release | Ingela Anderton Andin | |
(This is the merge of r13 version to r14_dev) | |||
2010-06-07 | OTP-8587 DSA key support | Ingela Anderton Andin | |
New ssl now support client/server-certificates signed by dsa keys. | |||
2010-05-26 | Avoid apparently timing issus when closing down openssl | Ingela Anderton Andin | |
2010-05-25 | Better coverage | Ingela Anderton Andin | |
2010-05-11 | OTP-8568 RFC -5746 | Ingela Anderton Andin | |
New ssl now supports secure renegotiation as described by RFC 5746. | |||
2010-04-29 | OTP-8588 Alert and packet handling improvment | Ingela Anderton Andin | |
Alert handling has been improved to better handle unexpected but valid messages and the implementation is also changed to avoid timing related issues that could cause different error messages depending on network latency. Packet handling was sort of broken but would mostly work as expected when socket was in binary mode. This has now been fixed. | |||
2010-04-15 | Tried to minimize sleeping | Ingela Anderton Andin | |
2010-04-15 | Ignore renegotiation reject until we implemented RFC-5746 | Ingela Anderton Andin | |
2010-04-13 | OTP-8554 Certificate extensions | Ingela Anderton Andin | |
2010-04-07 | ** Empty commit message ** | Ingela Anderton Andin | |
2010-03-25 | OTP-8517 Renegotiation | Ingela Anderton Andin | |
New ssl now properly handles ssl renegotiation, and initiates a renegotiation if ssl/ltls-sequence numbers comes close to the max value. | |||
2010-01-13 | Add test suite for the ssl application | Dan Gudmundsson | |