提交 · 2b40699082d1e5d0e94811542c4f0633ab2d5989 · OpenHarmony / Third Party Openssl

15 12月, 2016 1 次提交

CRL critical extension bugfix · 2b406990

由 Rich Salz 提交于 11月 28, 2016

More importantly, port CRL test from boringSSL crypto/x509/x509_test.cc
Reviewed-by: NRichard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1775)

2b406990

14 12月, 2016 1 次提交

Add X509_VERIFY_PARAM inheritance flag set/get · a47bc283

由 Rich Salz 提交于 12月 13, 2016

Reviewed-by: NRichard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2079)

a47bc283

03 12月, 2016 1 次提交
- V
  Restore last-resort expired untrusted intermediate issuers · c53f7355
  由 Viktor Dukhovni 提交于 11月 25, 2016
```
Reviewed-by: NMatt Caswell <matt@openssl.org>
```
  c53f7355
18 11月, 2016 1 次提交

Add support for reference counting using C11 atomics · 2f545ae4

由 Kurt Roeckx 提交于 8月 27, 2016

Reviewed-by: NAndy Polyakov <appro@openssl.org>
Reviewed-by: NRich Salz <rsalz@openssl.org>

GH: #1500

2f545ae4

09 11月, 2016 1 次提交

Simplify and clean X509_VERIFY_PARAM new/free code. · 234b8af4

由 FdaSilvaYY 提交于 9月 15, 2016

Split x509_verify_param_zero code to the right place
Reviewed-by: NRich Salz <rsalz@openssl.org>
Reviewed-by: NMatt Caswell <matt@openssl.org>

234b8af4

08 11月, 2016 1 次提交

Allow null in X509_CRL_METHOD_free · 7cb1ecec

由 FdaSilvaYY 提交于 9月 27, 2016

and fix documentation.
Reviewed-by: NTim Hudson <tjh@openssl.org>
Reviewed-by: NRich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1634)

7cb1ecec

12 10月, 2016 1 次提交

Fix X509_NAME decode for malloc failures. · 6dcba070

由 Dr. Stephen Henson 提交于 10月 02, 2016

The original X509_NAME decode free code was buggy: this
could result in double free or leaks if a malloc failure
occurred.

Simplify and fix the logic.

Thanks to Guido Vranken for reporting this issue.
Reviewed-by: NMatt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1691)

6dcba070

22 9月, 2016 1 次提交

Add -Wswitch-enum · f3b3d7f0

由 Rich Salz 提交于 8月 30, 2016

Change code so when switching on an enumeration, have case's for all
enumeration values.
Reviewed-by: NAndy Polyakov <appro@openssl.org>

f3b3d7f0

21 9月, 2016 1 次提交
- R
  Revert "Constify code about X509_VERIFY_PARAM" · 4588cb44
  由 Rich Salz 提交于 9月 21, 2016
```
This reverts commit 81f9ce1e.
Reviewed-by: NMatt Caswell <matt@openssl.org>
```
  4588cb44
18 9月, 2016 1 次提交

Constify code about X509_VERIFY_PARAM · 81f9ce1e

由 FdaSilvaYY 提交于 9月 15, 2016

Reviewed-by: NViktor Dukhovni <viktor@openssl.org>
Reviewed-by: NRich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1594)

81f9ce1e

25 8月, 2016 1 次提交
- V
  Un-delete still documented X509_STORE_CTX_set_verify · 4a7b3a7b
  由 Viktor Dukhovni 提交于 8月 24, 2016
```
It should not have been removed.
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  4a7b3a7b
23 8月, 2016 4 次提交

Constify a bit X509_NAME_get_entry · 0fe91236

由 FdaSilvaYY 提交于 8月 19, 2016

Reviewed-by: NMatt Caswell <matt@openssl.org>
Reviewed-by: NRichard Levitte <levitte@openssl.org>

0fe91236

Constify some X509_NAME, ASN1 printing code · 9f5466b9

由 FdaSilvaYY 提交于 7月 07, 2016

 ASN1_buf_print, asn1_print_*, X509_NAME_oneline, X509_NAME_print
Reviewed-by: NMatt Caswell <matt@openssl.org>
Reviewed-by: NRichard Levitte <levitte@openssl.org>

9f5466b9

Constify some inputs buffers · a026fbf9

由 FdaSilvaYY 提交于 8月 06, 2016

remove useless cast to call ASN1_STRING_set
Reviewed-by: NMatt Caswell <matt@openssl.org>
Reviewed-by: NRichard Levitte <levitte@openssl.org>

a026fbf9

M
Add some sanity checks when checking CRL scores · 8b7c51a0
由 Matt Caswell 提交于 8月 23, 2016
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
8b7c51a0

22 8月, 2016 1 次提交

Add X509_getm_notBefore, X509_getm_notAfter · 0b7347ef

由 Dr. Stephen Henson 提交于 8月 20, 2016

Add mutable versions of X509_get0_notBefore and X509_get0_notAfter.

Rename X509_SIG_get0_mutable to X509_SIG_getm.
Reviewed-by: NViktor Dukhovni <viktor@openssl.org>

0b7347ef

20 8月, 2016 1 次提交

Constify certificate and CRL time routines. · 568ce3a5

由 Dr. Stephen Henson 提交于 8月 19, 2016

Update certificate and CRL time routines to match new standard.
Reviewed-by: NRich Salz <rsalz@openssl.org>

568ce3a5

19 8月, 2016 3 次提交
- D
  Avoid duplicated code. · 3a60d6fa
  由 Dr. Stephen Henson 提交于 8月 19, 2016
```
The certificate and CRL time setting functions used similar code,
combine into a single utility function.
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  3a60d6fa
- D
  Add X509_get0_serialNumber() and constify OCSP_cert_to_id() · 68c12bfc
  由 Dr. Stephen Henson 提交于 8月 18, 2016
```
Reviewed-by: NMatt Caswell <matt@openssl.org>
```
  68c12bfc
- D
  constify X509_REQ_get0_signature() · 11222483
  由 Dr. Stephen Henson 提交于 8月 18, 2016
```
Reviewed-by: NMatt Caswell <matt@openssl.org>
```
  11222483
18 8月, 2016 1 次提交
- M
  Convert X509_REVOKED* functions to use const getters · 604f6eff
  由 Matt Caswell 提交于 8月 15, 2016
```
Reviewed-by: NRichard Levitte <levitte@openssl.org>
Reviewed-by: NStephen Henson <steve@openssl.org>
```
  604f6eff
17 8月, 2016 5 次提交
- D
  Constify X509_certificate_type() · 5ebd2fcb
  由 Dr. Stephen Henson 提交于 8月 17, 2016
```
Reviewed-by: NRichard Levitte <levitte@openssl.org>
```
  5ebd2fcb
- D
  Constify X509_get0_signature() · 8adc1cb8
  由 Dr. Stephen Henson 提交于 8月 17, 2016
```
Reviewed-by: NRichard Levitte <levitte@openssl.org>
```
  8adc1cb8
- D
  Convert X509* functions to use const getters · 8900f3e3
  由 Dr. Stephen Henson 提交于 8月 17, 2016
```
Reviewed-by: NRichard Levitte <levitte@openssl.org>
```
  8900f3e3
- M
  Convert X509_CRL* functions to use const getters · 5e6089f0
  由 Matt Caswell 提交于 8月 13, 2016
```
Reviewed-by: NRichard Levitte <levitte@openssl.org>
Reviewed-by: NStephen Henson <steve@openssl.org>
```
  5e6089f0
- M
  Make X509_NAME_get0_der() conform to OpenSSL style · 6eabcc83
  由 Matt Caswell 提交于 8月 15, 2016
```
Put the main object first in the params list.
Reviewed-by: NRichard Levitte <levitte@openssl.org>
Reviewed-by: NStephen Henson <steve@openssl.org>
```
  6eabcc83
16 8月, 2016 1 次提交

Add ASN1_STRING_get0_data(), deprecate ASN1_STRING_data(). · 17ebf85a

由 Dr. Stephen Henson 提交于 8月 16, 2016

Deprecate the function ASN1_STRING_data() and replace with a new function
ASN1_STRING_get0_data() which returns a constant pointer. Update library
to use new function.
Reviewed-by: NRich Salz <rsalz@openssl.org>

17ebf85a

06 8月, 2016 1 次提交

spelling fixes, just comments and readme. · 60250017

由 klemens 提交于 8月 05, 2016

Reviewed-by: NMatt Caswell <matt@openssl.org>
Reviewed-by: NRich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1413)

60250017

04 8月, 2016 3 次提交

F
Constify some ASN1_OBJECT *obj input parameters · c47ba4e9
由 FdaSilvaYY 提交于 7月 31, 2016
```
Reviewed-by: NRich Salz <rsalz@openssl.org>
Reviewed-by: NRichard Levitte <levitte@openssl.org>
```
c47ba4e9

Constify inputs of two X509_LOOKUP_METHOD methods · cfc5e0aa

由 FdaSilvaYY 提交于 7月 31, 2016

... get_by_fingerprint() and get_by_alias()
Reviewed-by: NRich Salz <rsalz@openssl.org>
Reviewed-by: NRichard Levitte <levitte@openssl.org>

cfc5e0aa

Constify input buffer · 924212a6

由 FdaSilvaYY 提交于 7月 31, 2016

of X509_NAME_add_entry_by_OBJ, X509_NAME_add_entry_by_NID, X509_NAME_ENTRY_create_by_NID
Reviewed-by: NRich Salz <rsalz@openssl.org>
Reviewed-by: NRichard Levitte <levitte@openssl.org>

924212a6

03 8月, 2016 1 次提交

Don't check any revocation info on proxy certificates · 790555d6

由 Richard Levitte 提交于 8月 03, 2016

Because proxy certificates typically come without any CRL information,
trying to check revocation on them will fail.  Better not to try
checking such information for them at all.
Reviewed-by: NRich Salz <rsalz@openssl.org>

790555d6

02 8月, 2016 2 次提交
- D
  Constify some X509_CRL, X509_REQ functions. · b26ab17f
  由 Dr. Stephen Henson 提交于 8月 01, 2016
```
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  b26ab17f
- D
  Constify some X509_CRL functions. · 67302ade
  由 Dr. Stephen Henson 提交于 8月 01, 2016
```
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  67302ade
31 7月, 2016 2 次提交

Ignore the serial number for now and just do the rest. · 22293ea1

由 Richard J. Moore 提交于 7月 30, 2016

Reviewed-by: NStephen Henson <steve@openssl.org>
Reviewed-by: NRich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1367)

22293ea1

Make some more X509 functions const. · 1421aead

由 Richard J. Moore 提交于 7月 30, 2016

Reviewed-by: NStephen Henson <steve@openssl.org>
Reviewed-by: NRich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1367)

1421aead

30 7月, 2016 1 次提交

Fix CRL time comparison. · e032117d

由 Dr. Stephen Henson 提交于 7月 29, 2016

Thanks to David Benjamin <davidben@google.com> for reporting this bug.
Reviewed-by: NRich Salz <rsalz@openssl.org>

e032117d

26 7月, 2016 3 次提交

Deprecate X509_LU_FAIL, X509_LU_RETRY · ba1a1c37

由 Dr. Stephen Henson 提交于 7月 25, 2016

Instead of X509_LU_FAIL, X509_LU_RETRY use 0/1 for return values.

RT#4577
Reviewed-by: NRich Salz <rsalz@openssl.org>

ba1a1c37

D
Use X509_LOOKUP_TYPE for lookup type consistently. · 0946a198
由 Dr. Stephen Henson 提交于 7月 25, 2016
```
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
0946a198

Remove current_method from X509_STORE_CTX · fc9d1ef3

由 Dr. Stephen Henson 提交于 7月 25, 2016

Remove current_method: it was intended as a means of retrying
lookups bit it was never used. Now that X509_verify_cert() is
a "one shot" operation it can never work as intended.
Reviewed-by: NRich Salz <rsalz@openssl.org>

fc9d1ef3

OpenHarmony / Third Party Openssl 1 年多 前同步成功

OpenHarmony / Third Party Openssl
1 年多前同步成功