-
Notifications
You must be signed in to change notification settings - Fork 167
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix test_pkey_ec.rb on FIPS. #681
Conversation
e9ae6a3
to
f1bac7d
Compare
I want this to be a separate test case. Let's make |
Okay. I understood your point. The test |
f1bac7d
to
fec15aa
Compare
I did split the |
fec15aa
to
4262e31
Compare
I am rebasing. Now 4 commits. The first commit is to test FIPS on local a bit easier. The 2nd commit is a bug of the And I want to fix other |
Just moment, I want to refactor. |
4262e31
to
a165ce8
Compare
OK. Now I am ready for reviewing again. Could you review? |
Run the test with `assert_separately` for the `false` value of the `OpenSSL.fips_mode` not to affect other tests.
a165ce8
to
7ec4ef3
Compare
I rebased the PR fixing the issues. Could you review the PR again? |
7ec4ef3
to
b958a95
Compare
I rebased fixing the issue again. I changed the
|
Sorry, I am refactoring again. |
b958a95
to
af4ed77
Compare
* Split the test in the FIPS case as another test. * test/openssl/utils.rb: Add omit_on_fips and omit_on_non_fips methods.
af4ed77
to
d07183f
Compare
All right. I refactored the 3rd commit, and rebased. Could you review again? |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good to me. Thank you!
Thank you too! |
This PR fixes #671 fixing the
test_ECPrivateKey_encrypted
test intest/openssl/test_pkey_ec.rb
in FIPS case, adding the test file to the CI.The PR has 2 commits.
The 1st commit is a rework of
test_ed25519
in thetest/openssl/test_pkey.rb
in OpenSSL 3.1 and later versions FIPS case. The commit is to prepare the 2nd commit. I want to test it with asserting rather than pending. Because I think that raising theOpenSSL::PKey::PKeyError
in the FIPS case is the expected behavior rather than pending status. I want to show that we are intentional for the raised error and error message.The 2nd commit is the main commit to fix the
test/openssl/test_pkey_ec.rb
on the same way that is applied to the 1st commit by testing the FIPS case by asserting. I also added thetest_pkey_ec.rb
to the CI. I checked that the test file is executed on my forked repository. The result is "29 tests, 185 assertions" below.https://github.com/junaruga/openssl/actions/runs/6131045483/job/16640679294#step:14:34
openssl-head fips
As a reference, on the current master branch, the case's result is below.
https://github.com/ruby/openssl/actions/runs/6040202225/job/16390553438#step:14:46