Age | Commit message (Expand) | Author | Files | Lines |
2020-09-11 | check_chain_extensions(): Require X.509 v3 if extensions are present | Dr. David von Oheimb | 2 | -0/+6 |
2020-09-11 | check_chain_extensions(): Change exclusion condition w.r.t. RFC 6818 section 2 | Dr. David von Oheimb | 1 | -2/+5 |
2020-09-11 | x509_vfy.c: Make sure that strict checks are not done for self-issued EE certs | Dr. David von Oheimb | 1 | -6/+9 |
2020-09-11 | check_chain_extensions(): Add check that CA cert includes key usage extension | Dr. David von Oheimb | 2 | -4/+10 |
2020-09-11 | check_chain_extensions(): Add check that on empty Subject the SAN must be mar... | Dr. David von Oheimb | 3 | -6/+9 |
2020-09-11 | check_chain_extensions(): Add check that AKID and SKID are not marked critical | Dr. David von Oheimb | 3 | -7/+25 |
2020-09-11 | check_chain_extensions(): Add check that Basic Constraints of CA cert are mar... | Dr. David von Oheimb | 3 | -2/+13 |
2020-09-11 | Extend X509 cert checks and error reporting in v3_{purp,crld}.c and x509_{set... | Dr. David von Oheimb | 8 | -86/+241 |
2020-09-10 | apps_ui.c: Correct password prompt for ui_method | Dr. David von Oheimb | 1 | -10/+8 |
2020-09-10 | STORE: Fix OSSL_STORE_attach() to check |ui_method| before use | Richard Levitte | 1 | -5/+7 |
2020-09-10 | X509_NAME_cmp: restrict normal return values to {-1,0,1} to avoid confusion w... | Dr. David von Oheimb | 1 | -19/+19 |
2020-09-10 | X509_NAME_oneline(): Fix output of multi-valued RDNs, escaping '/' and '+' in... | Dr. David von Oheimb | 1 | -10/+16 |
2020-09-10 | Fix an EVP_MD_CTX leak | Matt Caswell | 2 | -20/+35 |
2020-09-10 | Diverse build.info: Adjust paths | Richard Levitte | 3 | -4/+2 |
2020-09-10 | bugfix in apps/cmp.c and cmp_client.c: inconsistencies on retrieving extraCer... | Dr. David von Oheimb | 1 | -7/+8 |
2020-09-10 | bugfix in ossl_cmp_msg_protect(): set senderKID and extend extraCerts also fo... | Dr. David von Oheimb | 1 | -12/+12 |
2020-09-10 | bugfix in ossl_cmp_msg_add_extraCerts(): should include cert chain when using... | Dr. David von Oheimb | 1 | -1/+2 |
2020-09-10 | Clean up CMP chain building for CMP signer, TLS client, and newly enrolled certs | Dr. David von Oheimb | 4 | -40/+67 |
2020-09-09 | ENCODER: Refactor provider implementations, and some cleanup | Richard Levitte | 2 | -6/+2 |
2020-09-09 | In a non-shared build, don't include the md5 object files in legacy provider | Pauli | 1 | -1/+10 |
2020-09-09 | legacy: include MD5 code in legacy provider | Pauli | 1 | -0/+2 |
2020-09-08 | Allow unauthenticated CMP server if missing -trusted, -srvcert, and -secret o... | Dr. David von Oheimb | 1 | -0/+8 |
2020-09-08 | Add 4 new OIDs for PKIX key purposes and 3 new CMP information types | Dr. David von Oheimb | 3 | -5/+56 |
2020-09-08 | PEM: Make PEM_write_bio_PrivateKey_traditional() handle provider-native keys | Richard Levitte | 2 | -90/+152 |
2020-09-08 | Add CMS AuthEnvelopedData with AES-GCM support | Jakub Zelenka | 13 | -146/+554 |
2020-09-08 | OSSL_HTTP_parse_url(): add optional port number return parameter and strength... | Dr. David von Oheimb | 4 | -40/+73 |
2020-09-08 | EVP: Move the functions and controls for setting and getting distid | Richard Levitte | 2 | -82/+82 |
2020-09-08 | EVP: Expand the use of EVP_PKEY_CTX_md() | Richard Levitte | 1 | -1/+2 |
2020-09-08 | EVP: Add support for delayed EVP_PKEY operation parameters | Richard Levitte | 4 | -53/+337 |
2020-09-08 | New GOST PKCS12 standard support | Dmitry Belyavskiy | 1 | -5/+45 |
2020-09-08 | EVP: Don't shadow EVP_PKEY_CTX_new* error records | Richard Levitte | 1 | -3/+1 |
2020-09-08 | EVP: Preserve the EVP_PKEY id in a few more spots | Richard Levitte | 3 | -87/+146 |
2020-09-07 | Fix memory leaks in conf_def.c | luxinyou | 1 | -0/+2 |
2020-09-05 | Slightly abstract ktls_start() to reduce OS-specific #ifdefs. | John Baldwin | 2 | -14/+2 |
2020-09-05 | Fix the socket BIO control methods to use ktls_crypto_info_t. | John Baldwin | 2 | -15/+8 |
2020-09-05 | X509_STORE_CTX_print_verify_cb(): add AKID and SKID output for (non-)trusted ... | Dr. David von Oheimb | 2 | -7/+21 |
2020-09-05 | OSSL_CMP_CTX: rename field and its getter/setter from 'untrusted_certs' to 'u... | Dr. David von Oheimb | 5 | -28/+28 |
2020-09-05 | Strengthen chain building for CMP | Dr. David von Oheimb | 6 | -33/+59 |
2020-09-05 | Add OSSL_CMP_CTX_get1_newChain() and related CLI option -chainout | Dr. David von Oheimb | 2 | -0/+32 |
2020-09-05 | Fix coverity CID #1454815 - NULL ptr dereference in initthread.c | Shane Lontis | 1 | -1/+2 |
2020-09-05 | Fix coverity CID #1452769 & #1452771 - Arg passed to function that cannot be ... | Shane Lontis | 1 | -4/+4 |
2020-09-05 | Fix coverity CID #1457935 - Check return value in ffc_params.c for BIO_indent... | Shane Lontis | 1 | -4/+6 |
2020-09-05 | Fix coverity CID #1465967 & #1465968 - fix NULL dereference in dh_ameth.c | Shane Lontis | 1 | -3/+2 |
2020-09-05 | Fix coverity CID #1466378 - Incorrect expression in ec_backend.c | Shane Lontis | 1 | -1/+1 |
2020-09-03 | ASN1: Make ASN1_item_verify_ctx() work with provider-native keys | Richard Levitte | 1 | -1/+1 |
2020-09-03 | EC: Remove one error record that shadows another | Richard Levitte | 1 | -2/+0 |
2020-09-03 | EVP: Don't report malloc failure in new_raw_key_int() | Richard Levitte | 1 | -3/+1 |
2020-09-03 | STORE: Stop the flood of errors | Richard Levitte | 1 | -6/+35 |
2020-09-03 | CORE: Fix small bug in passphrase caching | Richard Levitte | 1 | -1/+2 |
2020-09-03 | STORE: Fix potential memory leak | Richard Levitte | 1 | -0/+1 |