root
/
openssl
mirror of https://github.com/openssl/openssl.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity
17,712 Commits 32 Branches 398 Tags 545 MiB
Commit Graph

28 Commits

Author SHA1 Message Date
Dr. Stephen Henson 3a60d6fa2f Avoid duplicated code. 
The certificate and CRL time setting functions used similar code,
combine into a single utility function.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-08-19 16:52:58 +01:00
Dr. Stephen Henson fc9d1ef39c Remove current_method from X509_STORE_CTX 
Remove current_method: it was intended as a means of retrying
lookups bit it was never used. Now that X509_verify_cert() is
a "one shot" operation it can never work as intended.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-07-26 16:23:02 +01:00
Richard Levitte 0a5fe2eb94 Add setter and getter for X509_STORE's check_policy 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-07-25 17:20:58 +02:00
FdaSilvaYY 687b486859 Rework error handling from asn1_do_lock method. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
 2016-06-23 14:00:47 +01:00
Rich Salz 6670d55a84 Make a2i_ipadd an internal function 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-06-09 17:15:42 -04:00
Rich Salz aa6bb1352b Copyright consolidation 05/10 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-05-17 15:38:09 -04:00
FdaSilvaYY 8483a003bf various spelling fixes 
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/952)
 2016-04-28 14:22:26 -04:00
Rich Salz f0e0fd51fd Make many X509_xxx types opaque. 
Make X509_OBJECT, X509_STORE_CTX, X509_STORE, X509_LOOKUP,
and X509_LOOKUP_METHOD opaque.
Remove unused X509_CERT_FILE_CTX

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
 2016-04-15 13:21:43 -04:00
Rich Salz e771eea6d8 Revert "various spelling fixes" 
This reverts commit 620d540bd4.
It wasn't reviewed.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-04-04 16:11:43 -04:00
FdaSilvaYY 620d540bd4 various spelling fixes 
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-04-04 15:06:32 -04:00
Dr. Stephen Henson a6eb1ce6a9 Make X509_SIG opaque. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-11 17:40:47 +00:00
Alessandro Ghedini c001ce3313 Convert CRYPTO_LOCK_X509_* to new multi-threading API 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-08 11:10:34 -05:00
Dr. Stephen Henson 54dbf42398 Make PKCS8_PRIV_KEY_INFO opaque. 
Make PKCS8_PRIV_KEY_INFO opaque. Several accessor functions already exist
for this structure. Two new ones were added to handle attributes.

The old handling of broken formats has been removed and the corresponding
structures simplified.

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-07 17:11:21 +00:00
Dr. Stephen Henson 359aa38fbe remove old unused oneline name field 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2016-03-01 22:25:40 +00:00
Rich Salz 349807608f Remove /* foo.c */ comments 
This was done by the following
        find . -name '*.[ch]' | /tmp/pl
where /tmp/pl is the following three-line script:
        print unless $. == 1 && m@/\* .*\.[ch] \*/@;
        close ARGV if eof; # Close file to reset $.

And then some hand-editing of other files.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
 2016-01-26 16:40:43 -05:00
Viktor Dukhovni 0e76014e58 Drop cached certificate signature validity flag 
It seems risky in the context of cross-signed certificates when the
same certificate might have multiple potential issuers.  Also rarely
used, since chains in OpenSSL typically only employ self-signed
trust-anchors, whose self-signatures are not checked, while untrusted
certificates are generally ephemeral.

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
 2016-01-18 13:20:48 -05:00
Dr. Stephen Henson 34a42e1489 embed CRL serial number and signature fields 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 15:36:58 +01:00
Dr. Stephen Henson 81e4943843 embed certificate serial number and signature fields 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 15:36:58 +01:00
Dr. Stephen Henson 2c81e476fa Make X509 opaque 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-22 21:15:55 +01:00
Dr. Stephen Henson 40ffdc9cfa Add comments to x509_int.h 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Emilia Käsper <emilia@openssl.org>
 2015-09-22 12:28:45 +01:00
Dr. Stephen Henson 6e63c142f2 Embed various signature algorithms. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-17 17:18:59 +01:00
Dr. Stephen Henson 95ed0e7c1f Embed X509_REQ_INFO 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-16 22:33:25 +01:00
Dr. Stephen Henson 7aef39a72a X509_CRL_INFO embed 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-16 22:17:39 +01:00
Dr. Stephen Henson 44748efc85 make X509_REVOKED opaque 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-09-05 12:29:51 +01:00
Dr. Stephen Henson e3e571925c make X509_CRL opaque 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-09-02 21:26:17 +01:00
Dr. Stephen Henson 124055a96e make X509_REQ opaque 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-08-31 20:58:33 +01:00
Dr. Stephen Henson bc3686dfb0 make X509_CERT_AUX opaque 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-08-31 20:58:33 +01:00
Dr. Stephen Henson 2743e38c2f make X509_NAME opaque 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-03-25 14:15:00 +00:00