wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
18428 commits 20 branches 302 tags 153 MiB
Commit graph

28 commits

Author SHA1 Message Date
Dr. Stephen Henson
3a60d6fa2f Avoid duplicated code. 
The certificate and CRL time setting functions used similar code,
combine into a single utility function.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-08-19 16:52:58 +01:00
Dr. Stephen Henson
fc9d1ef39c Remove current_method from X509_STORE_CTX 
Remove current_method: it was intended as a means of retrying
lookups bit it was never used. Now that X509_verify_cert() is
a "one shot" operation it can never work as intended.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-07-26 16:23:02 +01:00
Richard Levitte
0a5fe2eb94 Add setter and getter for X509_STORE's check_policy 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-07-25 17:20:58 +02:00
FdaSilvaYY
687b486859 Rework error handling from asn1_do_lock method. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
 2016-06-23 14:00:47 +01:00
Rich Salz
6670d55a84 Make a2i_ipadd an internal function 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-06-09 17:15:42 -04:00
Rich Salz
aa6bb1352b Copyright consolidation 05/10 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-05-17 15:38:09 -04:00
FdaSilvaYY
8483a003bf various spelling fixes 
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/952)
 2016-04-28 14:22:26 -04:00
Rich Salz
f0e0fd51fd Make many X509_xxx types opaque. 
Make X509_OBJECT, X509_STORE_CTX, X509_STORE, X509_LOOKUP,
and X509_LOOKUP_METHOD opaque.
Remove unused X509_CERT_FILE_CTX

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
 2016-04-15 13:21:43 -04:00
Rich Salz
e771eea6d8 Revert "various spelling fixes" 
This reverts commit 620d540bd4.
It wasn't reviewed.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-04-04 16:11:43 -04:00
FdaSilvaYY
620d540bd4 various spelling fixes 
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-04-04 15:06:32 -04:00
Dr. Stephen Henson
a6eb1ce6a9 Make X509_SIG opaque. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-11 17:40:47 +00:00
Alessandro Ghedini
c001ce3313 Convert CRYPTO_LOCK_X509_* to new multi-threading API 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-08 11:10:34 -05:00
Dr. Stephen Henson
54dbf42398 Make PKCS8_PRIV_KEY_INFO opaque. 
Make PKCS8_PRIV_KEY_INFO opaque. Several accessor functions already exist
for this structure. Two new ones were added to handle attributes.

The old handling of broken formats has been removed and the corresponding
structures simplified.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-07 17:11:21 +00:00
Dr. Stephen Henson
359aa38fbe remove old unused oneline name field 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-01 22:25:40 +00:00
Rich Salz
349807608f Remove /* foo.c */ comments 
This was done by the following
        find . -name '*.[ch]' | /tmp/pl
where /tmp/pl is the following three-line script:
        print unless $. == 1 && m@/\* .*\.[ch] \*/@;
        close ARGV if eof; # Close file to reset $.

And then some hand-editing of other files.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
 2016-01-26 16:40:43 -05:00
Viktor Dukhovni
0e76014e58 Drop cached certificate signature validity flag 
It seems risky in the context of cross-signed certificates when the
same certificate might have multiple potential issuers.  Also rarely
used, since chains in OpenSSL typically only employ self-signed
trust-anchors, whose self-signatures are not checked, while untrusted
certificates are generally ephemeral.

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
 2016-01-18 13:20:48 -05:00
Dr. Stephen Henson
34a42e1489 embed CRL serial number and signature fields 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 15:36:58 +01:00
Dr. Stephen Henson
81e4943843 embed certificate serial number and signature fields 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 15:36:58 +01:00
Dr. Stephen Henson
2c81e476fa Make X509 opaque 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-22 21:15:55 +01:00
Dr. Stephen Henson
40ffdc9cfa Add comments to x509_int.h 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Emilia Käsper <emilia@openssl.org>
 2015-09-22 12:28:45 +01:00
Dr. Stephen Henson
6e63c142f2 Embed various signature algorithms. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-17 17:18:59 +01:00
Dr. Stephen Henson
95ed0e7c1f Embed X509_REQ_INFO 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-16 22:33:25 +01:00
Dr. Stephen Henson
7aef39a72a X509_CRL_INFO embed 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-16 22:17:39 +01:00
Dr. Stephen Henson
44748efc85 make X509_REVOKED opaque 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-09-05 12:29:51 +01:00
Dr. Stephen Henson
e3e571925c make X509_CRL opaque 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-09-02 21:26:17 +01:00
Dr. Stephen Henson
124055a96e make X509_REQ opaque 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-08-31 20:58:33 +01:00
Dr. Stephen Henson
bc3686dfb0 make X509_CERT_AUX opaque 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-08-31 20:58:33 +01:00
Dr. Stephen Henson
2743e38c2f make X509_NAME opaque 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-03-25 14:15:00 +00:00