- 11 9月, 2013 1 次提交
-
-
由 Ben Laurie 提交于
-
- 10 9月, 2013 2 次提交
-
-
由 Andy Polyakov 提交于
Avoid occasional up to 8% performance drops.
-
由 Andy Polyakov 提交于
-
- 09 9月, 2013 1 次提交
-
-
由 Dr. Stephen Henson 提交于
When verifying a partial path always check to see if the EE certificate is explicitly trusted: the path could contain other untrusted certificates.
-
- 06 9月, 2013 2 次提交
-
-
由 Scott Deboy 提交于
Add callbacks supporting generation and retrieval of supplemental data entries, facilitating RFC 5878 (TLS auth extensions) Removed prior audit proof logic - audit proof support was implemented using the generic TLS extension API Tests exercising the new supplemental data registration and callback api can be found in ssltest.c. Implemented changes to s_server and s_client to exercise supplemental data callbacks via the -auth argument, as well as additional flags to exercise supplemental data being sent only during renegotiation.
-
-
- 21 8月, 2013 1 次提交
-
-
由 Ben Laurie 提交于
-
- 18 8月, 2013 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 06 8月, 2013 1 次提交
-
-
由 Kaspar Brand 提交于
PR: 3028 Fix bug introduced in PEM_X509_INFO_bio which wouldn't process RSA keys correctly if they appeared first.
-
- 05 8月, 2013 7 次提交
-
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
Add X9.42 DH KDF. Move sharedinfo generation code to CMS library as the same structure is used by DH and ECDH. Move ASN1_OBJECT typedef to ossl_typ.h so it can be picked up by dh headers without the need to use ASN1.
-
由 Dr. Stephen Henson 提交于
Add support for DH parameter generation using DSA methods including FIPS 186-3.
-
由 Dr. Stephen Henson 提交于
Make DHparams_dup work properly with X9.42 DH parameters.
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
Don't need to use temporary buffer if remaining length equals digest length.
-
由 Dr. Stephen Henson 提交于
Check and set AlgorithmIdenfier parameters for key wrap algorithms. Currently these just set parameters to NULL.
-
- 03 8月, 2013 2 次提交
-
-
由 Andy Polyakov 提交于
Bug would emerge when XTS is added to bsaes-armv7.pl. Pointed out by Ard Biesheuvel of Linaro.
-
由 Andy Polyakov 提交于
-
- 01 8月, 2013 1 次提交
-
-
由 Andy Polyakov 提交于
-
- 19 7月, 2013 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Update ecdsatest to use ECDSA_sign_setup and ECDSA_sign_ex, this avoids the nonce generation which would otherwise break the test. Reinstate ecdsatest.
-
- 18 7月, 2013 9 次提交
-
-
由 Dr. Stephen Henson 提交于
For RSA and DSA keys return an appropriate RecipientInfo type. By setting CMS_RECIPINFO_NONE for DSA keys an appropriate error is returned if an attempt is made to use DSA with enveloped data.
-
由 Dr. Stephen Henson 提交于
Add support for ECDH in enveloped data. The CMS ctrls for the EC ASN1 method decode/encode the appropriate parameters from the CMS ASN1 data and send appropriate data to the EC public key method.
-
由 Dr. Stephen Henson 提交于
Add X9.62 KDF to EC EVP_PKEY_METHOD.
-
由 Dr. Stephen Henson 提交于
Add OIDs for KDF schemes from RFC5753 and add cross references for each type and the appropriate digest to use.
-
由 Dr. Stephen Henson 提交于
Add hooks to support key agreement recipient info type (KARI) using algorithm specific code in the relevant public key ASN1 method.
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
Add support for key wrap algorithms via EVP interface. Generalise AES wrap algorithm and add to modes, making existing AES wrap algorithm a special case. Move test code to evptests.txt
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
Keep original function names for nonce versions so we don't have to change error function codes.
-
- 15 7月, 2013 1 次提交
-
-
由 Adam Langley 提交于
This change updates 8a99cb29 to make the generation of (EC)DSA nonces using the message digest the default. It also reverts the changes to (EC)DSA_METHOD structure. In addition to making it the default, removing the flag from EC_KEY means that FIPS modules will no longer have an ABI mismatch.
-
- 13 7月, 2013 2 次提交
-
-
由 Andy Polyakov 提交于
-
由 Dr. Stephen Henson 提交于
PR #3090 Reported by: Franck Youssef <fry@open.ch> If no new reason codes are obtained after checking a CRL exit with an error to avoid repeatedly checking the same CRL. This will only happen if verify errors such as invalid CRL scope are overridden in a callback.
-
- 12 7月, 2013 1 次提交
-
-
由 Ben Laurie 提交于
-
- 10 7月, 2013 1 次提交
-
-
由 Andy Polyakov 提交于
Submitted by: Gisle Vanem
-
- 06 7月, 2013 5 次提交
-
-
由 Andy Polyakov 提交于
-
由 Andy Polyakov 提交于
RT: 2582, 2850
-
由 Andy Polyakov 提交于
RT: 2582, 2850
-
由 Andy Polyakov 提交于
-
由 Andy Polyakov 提交于
-
- 03 7月, 2013 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-