git.ipfire.org Git - thirdparty/openssl.git/commit

author	Richard Levitte <levitte@openssl.org>
	Tue, 18 Aug 2020 19:17:58 +0000 (21:17 +0200)
committer	Richard Levitte <levitte@openssl.org>
	Thu, 20 Aug 2020 05:49:26 +0000 (07:49 +0200)
commit	e6ed04a9dcc2ead94e35c4a7400b9c998b5ad9ac
tree	ee59973b1665280740659ee1d45428601284b285	tree \| snapshot
parent	a24b510c28006cdb9ef47009298589e0ea546334	commit \| diff

TEST: separate out NIST ECC tests from non-NIST

ECC keys with non-NIST group names aren't supported when running with
the FIPS provider.

Keys with such groups that are included in evp_test stanza files
aren't even possible to decode if provider side decoders are used,
since those depend on available EVP_KEYMGMT implementations and what
they support.

Those keys could only be decoded because the legacy decoders were
used.

To make these tests future proof, we separate out the stanzas having
keys with NIST approved group names into separate files, and adjust
the file lists in test/recipes/30-test_evp.t aaccordingly.

Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/12672)

test/recipes/30-test_evp.t		diff \| blob \| blame \| history
test/recipes/30-test_evp_data/evppkey_ecc.txt		diff \| blob \| blame \| history
test/recipes/30-test_evp_data/evppkey_ecc_nist.txt	[new file with mode: 0644]	blob
test/recipes/30-test_evp_data/evppkey_ecdh.txt		diff \| blob \| blame \| history
test/recipes/30-test_evp_data/evppkey_ecdh_nist.txt	[new file with mode: 0644]	blob