wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
12260 commits 20 branches 302 tags 153 MiB
Commit graph

21 commits

Author SHA1 Message Date
Matt Caswell
ad64a69e02 Change usage of RAND_pseudo_bytes to RAND_bytes 
RAND_pseudo_bytes() allows random data to be returned even in low entropy
conditions. Sometimes this is ok. Many times it is not. For the avoidance
of any doubt, replace existing usage of RAND_pseudo_bytes() with
RAND_bytes().

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-06-27 15:00:08 +01:00
Viktor Dukhovni
3b38646d13 Code style: space after 'if' 
Reviewed-by: Matt Caswell <gitlab@openssl.org>
 2015-04-16 13:50:01 -04:00
Matt Caswell
8f8e4e4f52 Fix RAND_(pseudo_)?_bytes returns 
Ensure all calls to RAND_bytes and RAND_pseudo_bytes have their return
value checked correctly

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-03-25 12:41:28 +00:00
Matt Caswell
ae5c8664e5 Run util/openssl-format-source -v -c . 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-01-22 09:31:38 +00:00
Matt Caswell
e19d4a99b8 Further comment amendments to preserve formatting prior to source reformat 
(cherry picked from commit 4a7fa26ffd65bf36beb8d1cb8f29fc0ae203f5c5)

Conflicts:
	crypto/x509v3/pcy_tree.c

Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-01-22 09:23:50 +00:00
Dr. Stephen Henson
3c07d3a3d3 Finish gcc 4.2 changes. 2007-06-07 13:14:42 +00:00
Dr. Stephen Henson
fb596f3bb7 OCSP library tidy. Use extension to encode OCSP extensions instead of doing 
it manually. Make OCSP_CERTID_dup() a real function instead of a macro.
 2006-11-13 13:18:28 +00:00
Ben Laurie
8bb826ee53 Consistency. 2005-03-31 13:57:54 +00:00
Ben Laurie
41a15c4f0f Give everything prototypes (well, everything that's actually used). 2005-03-31 09:26:39 +00:00
Dr. Stephen Henson
dc90f64d56 Use an OCTET STRING for the encoding of an OCSP nonce value. 
The old raw format can't be handled by some implementations
and updates to RFC2560 will make this mandatory.
 2004-02-19 18:16:38 +00:00
Richard Levitte
e28e42a549 Use sk_*_new_null() instead of sk_*_new(NULL). That avoids getting 
lots of silly warnings from the compiler.
 2001-02-20 13:06:10 +00:00
Dr. Stephen Henson
46a58ab946 Modify OCSP nonce behaviour. 2001-02-12 23:28:45 +00:00
Richard Levitte
c2bf70a27c The check for request including a nonce and response not having it was 
inversed.  Corrected.  Hopefully, this will make it work without
dumping core.
 2001-02-08 19:28:10 +00:00
Dr. Stephen Henson
26e083ccb7 New function to copy nonce values from OCSP 
request to response.
 2001-02-05 00:35:06 +00:00
Dr. Stephen Henson
0b33bc65cd Add set of OCSP client functions. All experimental 
and subject to addition, modifcation or deletion.

Add two OCSP nonce utility functions.

Fix typo in status code name.
 2001-01-08 01:21:55 +00:00
Dr. Stephen Henson
ec558b6548 New OCSP extension functions. 2000-12-28 01:05:05 +00:00
Dr. Stephen Henson
1f47ec53a2 Redo OCSP response printing. Remove duplicate or 
obsolete code. Delete some redundant files.
 2000-12-17 14:09:43 +00:00
Richard Levitte
820aaa5fc5 Typo, was "time" instead of "tim". 
Caught by Jeffrey Altman <jaltman@columbia.edu>
 2000-11-14 10:52:16 +00:00
Ben Laurie
2f9f0c72de Make this stuff compile. 2000-11-12 02:11:13 +00:00
Richard Levitte
2f13ee21ea Instead of just STACK, use STACK_OF(ASN1_OBJECT). 2000-11-03 00:59:49 +00:00
Richard Levitte
eb64730b9c The majority of the OCSP code from CertCo. 2000-10-27 11:05:35 +00:00