- 06 8月, 2001 1 次提交
-
-
由 Ben Laurie 提交于
-
- 31 7月, 2001 1 次提交
-
-
由 Ben Laurie 提交于
-
- 11 6月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 10 5月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Purpose and trust setting functions for X509_STORE. Tidy existing code.
-
- 16 3月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Overhaul the display of certificate details in the 'ca' utility. This can now be extensively customised in the configuration file and handles multibyte strings and extensions properly. This is required when extensions copying from certificate requests is supported: the user must be able to view the extensions before allowing a certificate to be issued.
-
- 26 2月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Enhance OCSP_request_verify() so it finds the signers certificate properly and supports several flags.
-
- 20 2月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
sure they are available in opensslconf.h, by giving them names starting with "OPENSSL_" to avoid conflicts with other packages and by making sure e_os2.h will cover all platform-specific cases together with opensslconf.h. I've checked fairly well that nothing breaks with this (apart from external software that will adapt if they have used something like NO_KRB5), but I can't guarantee it completely, so a review of this change would be a good thing.
-
- 02 2月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 17 1月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Initial OCSP certificate verify. Not complete, it just supports a "trusted OCSP global root CA".
-
- 29 12月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
The old function pointer versions will eventually go away.
-
- 25 12月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
encoding, replacing and deleting extensions. Fix X509V3_get_d2i() so it uses takes note of new critical behaviour.
-
- 14 12月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
code from certificate, CRL and request printing routines.
-
- 09 12月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Merge from the ASN1 branch of new ASN1 code to main trunk. Lets see if the makes it to openssl-cvs :-)
-
- 27 10月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
-
- 04 10月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Add support for X509_NAME_print_ex() in req. Initial code for cutomizable X509 print routines.
-
- 08 9月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Update PKCS12_parse(). Make the keyid in certificate aux info more usable.
-
- 07 9月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
centralise those hacks in crypto/symhacks.h and use it everywhere it's needed.
-
- 06 9月, 2000 2 次提交
-
-
由 Dr. Stephen Henson 提交于
Add support for settable verify time in X509_verify_cert(). Document rsautl utility.
-
由 Dr. Stephen Henson 提交于
The old code was painfully primitive and couldn't handle distinct certificates using the same subject name. The new code performs several tests on a candidate issuer certificate based on certificate extensions. It also adds several callbacks to X509_VERIFY_CTX so its behaviour can be customised. Unfortunately some hackery was needed to persuade X509_STORE to tolerate this. This should go away when X509_STORE is replaced, sometime... This must have broken something though :-(
-
- 05 9月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Add new option to PKCS7_sign to exclude S/MIME capabilities.
-
- 04 9月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Add DER public key routines. Add -passin argument to 'ca' utility. Document sign and verify options to dgst.
-
- 30 7月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Document the new DN printing options. Change a few names to be more meaningful. Fix typos in CA.pl docs.
-
- 28 7月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
New ASN1_STRING_print_ex() and X509_NAME_print_ex() functions. These are intended to be replacements for the ancient ASN1_STRING_print() and X509_NAME_print() functions. The new functions support RFC2253 and various pretty printing options. It is also possible to display international characters if the terminal properly handles UTF8 encoding (Linux seems to tolerate this if the "unicode_start" script is run). Still needs to be documented, integrated into other utilities and extensively tested.
-
- 26 7月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
ASN1_TIME fixes. New function c2i_ASN1_OBJECT().
-
- 21 6月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Handle ASN1_SET_OF and PKCS12_STACK_OF using function casts in the same way as STACK_OF.
-
- 17 6月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
After some messing around this seems to work but needs a few more tests. Working out the syntax for sk_set_cmp_func() (cast it to a function that itself returns a function pointer) was painful :-( Needs some testing to see what other compilers think of this syntax. Also needs similar stuff for ASN1_SET_OF etc etc.
-
- 09 6月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
was a really bad idea. For example, the following: #include <x509.h> #include <bio.h> #include <asn1.h> would make sure that things like ASN1_UTCTIME_print() wasn't defined unless you moved the inclusion of bio.h to above the inclusion of x509.h. The reason is that x509.h includes asn1.h, and the declaration of ASN1_UTCTIME_print() depended on the definition of HEADER_BIO_H. That's what I call an obscure bug. Instead, this change makes sure that whatever header files are needed for the correct process of one header file are included automagically, and that the definitions of, for example, BIO-related things are dependent on the absence of the NO_{foo} macros. This is also consistent with the way parts of OpenSSL can be excluded at will.
-
- 01 6月, 2000 2 次提交
-
-
由 Geoff Thorpe 提交于
libeay.num and ssleay.num.
-
由 Geoff Thorpe 提交于
yet tighter, and also put some heat on the rest of the library by insisting (correctly) that compare callbacks used in stacks are prototyped with "const" parameters. This has led to a depth-first explosion of compiler warnings in the code where 1 constification has led to 3 or 4 more. Fortunately these have all been resolved to completion and the code seems cleaner as a result - in particular many of the _cmp() functions should have been prototyped with "const"s, and now are. There was one little problem however; X509_cmp() should by rights compare "const X509 *" pointers, and it is now declared as such. However, it's internal workings can involve recalculating hash values and extensions if they have not already been setup. Someone with a more intricate understanding of the flow control of X509 might be able to tighten this up, but for now - this seemed the obvious place to stop the "depth-first" constification of the code by using an evil cast (they have migrated all the way here from safestack.h). Fortunately, this is the only place in the code where this was required to complete these type-safety changes, and it's reasonably clear and commented, and seemed the least unacceptable of the options. Trying to take the constification further ends up exploding out considerably, and indeed leads directly into generalised ASN functions which are not likely to cooperate well with this.
-
- 18 5月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 17 5月, 2000 1 次提交
-
-
由 Ben Laurie 提交于
-
- 02 5月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
"Jan Mikkelsen" <janm@transactionsite.com> correctly states that the OpenSSL header files have #include's and extern "C"'s in an incorrect order. Thusly fixed.
-
- 07 3月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 26 2月, 2000 2 次提交
-
-
由 Bodo Möller 提交于
where the new functions are mentioned.
-
由 Dr. Stephen Henson 提交于
-
- 21 2月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 07 2月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
This better reflects their behaviour.
-
- 06 2月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 04 2月, 2000 1 次提交
-
-
由 Ulf Möller 提交于
-
- 24 1月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Tidy up CRYPTO_EX_DATA structures.
-