projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dda4e25) | patch
Add 'on demand self test' and status test to providers
authorShane Lontis <shane.lontis@oracle.com>
Sun, 9 Aug 2020 08:06:52 +0000 (18:06 +1000)
committerShane Lontis <shane.lontis@oracle.com>
Sun, 9 Aug 2020 08:06:52 +0000 (18:06 +1000)
commit04cb5ec0b74896fe806625ac4d87e3396890f246
tree558c92ddf1b1fb2421d9f3f9aae3c82595a94830tree | snapshot
parentdda4e259e51aeaf05a2417ef577accf778c9f6f6commit | diff
Add 'on demand self test' and status test to providers

The default and legacy providers currently return 1 for status and self test checks.
Added test to show the 3 different stages the self test can be run (for installation, loading and on demand).

For the fips provider:
  - If the on demand self test fails, then any subsequent fetches should also fail. To implement this the
    cached algorithms are flushed on failure.
  - getting the self test callback in the fips provider is a bit complicated since the callback hangs off the core
    libctx (as it is set by the application) not the actual fips library context. Also the callback can be set at
    any time not just during the OSSL_provider_init() so it is calculated each time before doing any self test.

Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/11752)
22 files changed:
crypto/evp/evp_fetch.c diff | blob | history
crypto/property/property.c diff | blob | history
crypto/provider.c diff | blob | history
crypto/provider_core.c diff | blob | history
crypto/sparse_array.c diff | blob | history
doc/man3/OSSL_PROVIDER.pod diff | blob | history
doc/man7/provider-base.pod diff | blob | history
include/crypto/evp.h diff | blob | history
include/internal/property.h diff | blob | history
include/internal/provider.h diff | blob | history
include/openssl/core_dispatch.h diff | blob | history
include/openssl/core_names.h diff | blob | history
include/openssl/provider.h diff | blob | history
providers/defltprov.c diff | blob | history
providers/fips/fipsprov.c diff | blob | history
providers/fips/self_test.c diff | blob | history
providers/fips/self_test.h diff | blob | history
providers/legacyprov.c diff | blob | history
test/build.info diff | blob | history
test/provider_status_test.c [new file with mode: 0644] blob
test/recipes/30-test_provider_status.t [new file with mode: 0644] blob
util/libcrypto.num diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.