Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | RT3543: Remove #ifdef LINT | Rich Salz | 2014-12-10 | 1 | -3/+0 |
| | | | | | | | I also replaced some exit/return wrappers in various programs (from main) to standardize on return. Reviewed-by: Richard Levitte <levitte@openssl.org> | ||||
* | Implement internally opaque bn access from asn1 | Matt Caswell | 2014-12-08 | 2 | -4/+4 |
| | | | | Reviewed-by: Tim Hudson <tjh@openssl.org> | ||||
* | Remove fipscanister build functionality from makefiles. | Dr. Stephen Henson | 2014-12-08 | 1 | -1/+1 |
| | | | | Reviewed-by: Tim Hudson <tjh@openssl.org> | ||||
* | Remove all .cvsignore files | Rich Salz | 2014-11-28 | 1 | -4/+0 |
| | | | | Reviewed-by: Tim Hudson <tjh@openssl.org> | ||||
* | Add i2d_re_X509_tbs | Emilia Kasper | 2014-09-05 | 1 | -0/+6 |
| | | | | | | | i2d_re_X509_tbs re-encodes the TBS portion of the certificate. Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Dr Stephen Henson <steve@openssl.org> | ||||
* | RT3508: Remove unused variable introduced by b09eb24 | Kurt Cancemi | 2014-08-31 | 1 | -1/+0 |
| | | | | Reviewed-by: Tim Hudson <tjh@openssl.org> | ||||
* | RT3246: req command prints version number wrong | Rich Salz | 2014-08-28 | 1 | -7/+3 |
| | | | | | | | Make X509_REQ_print_ex do the same thing that X509_REQ_print does. Reviewed-by: Matt Caswell <matt@openssl.org> | ||||
* | RT2400: ASN1_STRING_to_UTF8 missing initializer | Raphael Spreitzer | 2014-08-27 | 1 | -0/+1 |
| | | | | Reviewed-by: Tim Hudson <tjh@openssl.org> | ||||
* | RT1815: More const'ness improvements | Justin Blanchard | 2014-08-18 | 4 | -9/+9 |
| | | | | | | | | Add a dozen more const declarations where appropriate. These are from Justin; while adding his patch, I noticed ASN1_BIT_STRING_check could be fixed, too. Reviewed-by: Dr. Stephen Henson <steve@openssl.org> | ||||
* | multi_split: check for NULL when allocating parts and bpart, and for failure ↵ | Jonas Maebe | 2014-08-15 | 1 | -2/+17 |
| | | | | | | | of sk_BIO_push() Signed-off-by: Kurt Roeckx <kurt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> | ||||
* | mime_hdr_addparam: free tmpname, tmpval and mparam on error path, and check ↵ | Jonas Maebe | 2014-08-15 | 1 | -8/+17 |
| | | | | | | | whether sk_MIME_PARAM_push succeeds Signed-off-by: Kurt Roeckx <kurt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> | ||||
* | mime_hdr_new: free mhdr, tmpname, tmpval on error path | Jonas Maebe | 2014-08-15 | 1 | -7/+18 |
| | | | | | Signed-off-by: Kurt Roeckx <kurt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> | ||||
* | ASN1_verify, ASN1_item_verify: cleanse and free buf_in on error path | Jonas Maebe | 2014-08-15 | 1 | -10/+16 |
| | | | | | Signed-off-by: Kurt Roeckx <kurt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> | ||||
* | SetBlob: free rgSetBlob on error path | Jonas Maebe | 2014-08-15 | 1 | -0/+1 |
| | | | | | Signed-off-by: Kurt Roeckx <kurt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> | ||||
* | RT783: Minor optimization to ASN1_INTEGER_set | Frédéric Giudicelli | 2014-08-15 | 1 | -8/+7 |
| | | | | | | Remove local variable and avoid extra assignment. Reviewed-by: Emilia Kasper <emilia@silkandcyanide.net> | ||||
* | RT3023: Redundant logical expressions | Hans Wennborg | 2014-08-15 | 1 | -1/+0 |
| | | | | | | Remove some redundant logical expressions Reviewed-by: Emilia Kasper <emilia@silkandcyanide.net> | ||||
* | Fix d4a4370050f7d72239b92a60ab9d4a2dd5e9fd84 | Dr Stephen Henson | 2014-08-11 | 2 | -6/+1 |
| | | | | | Fully remove old error, per drH Reviewed-by: rsalz | ||||
* | RT 2517: Various typo's. | Scott Schaefer | 2014-08-11 | 2 | -1/+5 |
| | | | | | | | Reviewed-by: Emilia Kasper Many of these were already fixed, this catches the last few that were missed. | ||||
* | Fix OID handling: | Emilia Kasper | 2014-08-06 | 1 | -9/+21 |
| | | | | | | | | | | | - Upon parsing, reject OIDs with invalid base-128 encoding. - Always NUL-terminate the destination buffer in OBJ_obj2txt printing function. CVE-2014-3508 Reviewed-by: Dr. Stephen Henson <steve@openssl.org> Reviewed-by: Kurt Roeckx <kurt@openssl.org> Reviewed-by: Tim Hudson <tjh@openssl.org> | ||||
* | Add license info. | Dr. Stephen Henson | 2014-07-04 | 1 | -0/+3 |
| | |||||
* | ASN1 sanity check. | Dr. Stephen Henson | 2014-07-02 | 1 | -0/+3 |
| | | | | | | | Primitive encodings shouldn't use indefinite length constructed form. PR#2438 (partial). | ||||
* | Handle BER length encoding. | Dr. Stephen Henson | 2014-06-29 | 1 | -2/+8 |
| | | | | | | Tolerate BER length encoding which may include leading zeroes. PR#2746 | ||||
* | Tolerate critical AKID in CRLs. | Dr. Stephen Henson | 2014-06-27 | 1 | -0/+1 |
| | | | | PR#3014 | ||||
* | Memory leak and NULL dereference fixes. | Dr. Stephen Henson | 2014-06-27 | 8 | -10/+48 |
| | | | | PR#3403 | ||||
* | Set default global mask to UTF8 only. | Dr. Stephen Henson | 2014-06-01 | 1 | -1/+1 |
| | |||||
* | Don't try and verify signatures if key is NULL (CVE-2013-0166) | Dr. Stephen Henson | 2014-04-01 | 1 | -0/+6 |
| | | | | | Add additional check to catch this in ASN1_item_verify too. (cherry picked from commit 66e8211c0b1347970096e04b18aa52567c325200) | ||||
* | Add functions returning security bits. | Dr. Stephen Henson | 2014-03-28 | 2 | -0/+8 |
| | | | | | Add functions to return the "bits of security" for various public key algorithms. Based on SP800-57. | ||||
* | make depend | Dr. Stephen Henson | 2014-02-19 | 1 | -4/+3 |
| | |||||
* | Remove references to o_time.h | Dr. Stephen Henson | 2014-02-19 | 3 | -3/+0 |
| | |||||
* | Fix various spelling errors | Scott Schaefer | 2014-02-14 | 1 | -1/+1 |
| | |||||
* | Add suppot for ASCII with CRLF canonicalisation. | Dr. Stephen Henson | 2014-02-13 | 1 | -5/+23 |
| | |||||
* | Support setting of "no purpose" for trust. | Dr. Stephen Henson | 2013-11-11 | 1 | -8/+19 |
| | | | | | | If the oid parameter is set to NULL in X509_add1_trust_object create an empty list of trusted purposes corresponding to "no purpose" if trust is checked. | ||||
* | More diagnostics for invalid OIDs. | Ben Laurie | 2013-09-20 | 1 | -1/+5 |
| | |||||
* | misspellings fixes by https://github.com/vlajos/misspell_fixer | Veres Lajos | 2013-09-05 | 1 | -1/+1 |
| | |||||
* | Add KDF for DH. | Dr. Stephen Henson | 2013-08-05 | 1 | -2/+2 |
| | | | | | | | | Add X9.42 DH KDF. Move sharedinfo generation code to CMS library as the same structure is used by DH and ECDH. Move ASN1_OBJECT typedef to ossl_typ.h so it can be picked up by dh headers without the need to use ASN1. | ||||
* | Encode INTEGER correctly. | Dr. Stephen Henson | 2013-03-18 | 1 | -1/+1 |
| | | | | | | If an ASN1_INTEGER structure is allocated but not explicitly set encode it as zero: don't generate an invalid zero length INTEGER. (cherry picked from commit 1643edc63c3e15b6db5a15a728bc288f2cc2bbc7) | ||||
* | make depend. | Ben Laurie | 2013-02-21 | 1 | -23/+19 |
| | |||||
* | Make "make depend" work on MacOS out of the box. | Ben Laurie | 2013-01-19 | 1 | -19/+23 |
| | |||||
* | initial support for delta CRL generations by diffing two full CRLs | Dr. Stephen Henson | 2012-12-04 | 1 | -0/+1 |
| | |||||
* | Reorganise parameters for OPENSSL_gmtime_diff. | Dr. Stephen Henson | 2012-11-21 | 2 | -34/+21 |
| | | | | Make ASN1_UTCTIME_cmp_time_t more robust by using the new time functions. | ||||
* | first parameter is difference in days, not years | Dr. Stephen Henson | 2012-11-20 | 2 | -3/+3 |
| | |||||
* | make depend | Dr. Stephen Henson | 2012-11-19 | 1 | -2/+3 |
| | |||||
* | new function ASN1_TIME_diff to calculate difference between two ASN1_TIME ↵ | Dr. Stephen Henson | 2012-11-19 | 5 | -64/+131 |
| | | | | structures | ||||
* | make depend | Dr. Stephen Henson | 2012-11-19 | 1 | -0/+15 |
| | |||||
* | oops, add missing asn_mstbl.c | Dr. Stephen Henson | 2012-10-24 | 1 | -0/+178 |
| | |||||
* | New config module for string tables. This can be used to add new | Dr. Stephen Henson | 2012-10-22 | 4 | -3/+45 |
| | | | | | multi string components (as used in DN fields or request attributes) or change the values of existing ones. | ||||
* | fix ASN1_STRING_TABLE_add so it can override existing string table values | Dr. Stephen Henson | 2012-10-19 | 1 | -31/+66 |
| | |||||
* | Fix Valgrind warning. | Bodo Möller | 2012-09-24 | 1 | -0/+1 |
| | | | | Submitted by: Adam Langley | ||||
* | New functions to retrieve certificate signatures and signature OID NID. | Dr. Stephen Henson | 2012-06-13 | 1 | -0/+14 |
| | |||||
* | print out issuer and subject unique identifier fields in certificates | Dr. Stephen Henson | 2012-06-12 | 1 | -0/+18 |
| |