| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
| |
connection so it can prompt for pass phrase on startup
instead of after the first connection.
Add -port switch to usage message.
|
| |
|
|
| |
Document new OCSP options.
|
| |
|
|
|
|
|
| |
This can process internal requests or behave like a
mini responder.
Todo: documentation, update usage info.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
string (some engines may have certificates protected by a PIN!) and
a description to put into error messages.
Also, have our own password callback that we can send both a password
and some prompt info to. The default password callback in EVP assumes
that the passed parameter is a password, which isn't always the right
thing, and the ENGINE code (at least the nCipher one) makes other
assumptions...
Also, in spite of having the functions to load keys, some utilities
did the loading all by themselves... That's changed too.
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Doesn't handle SSL URLs yet.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
| |
OCSP responses.
Documentation to follow...
Urgh.. this conflicted with the -VAfile patch I hope I haven't
broken it.
|
| |
|
|
|
|
|
| |
client code certificates to use to only check response signatures.
I'm not entirely sure if the way I just implemented the verification
is the right way to do it, and would be happy if someone would like to
review this.
|
| | |
|
| |
|
|
| |
Enhance s2i_ASN1_INTEGER().
|
| |
|
|
|
|
|
| |
of status info. Check nonce values. Option to disable
verify. Update usage message.
Rename status to string functions and make them global.
|
| |
|
|
| |
accordance with RFC2560.
|
| |
|
|
| |
it just supports a "trusted OCSP global root CA".
|
| |
|
|
| |
Fix ocsp usage message.
|
|
|
OCSP requests. It can also query reponders and parse or
print out responses.
Still needs some more work: OCSP response checks and
of course documentation.
|
