aboutsummaryrefslogtreecommitdiff
path: root/crypto
AgeCommit message (Expand)AuthorFilesLines
2020-09-11check_chain_extensions(): Require X.509 v3 if extensions are presentDr. David von Oheimb2-0/+6
2020-09-11check_chain_extensions(): Change exclusion condition w.r.t. RFC 6818 section 2Dr. David von Oheimb1-2/+5
2020-09-11x509_vfy.c: Make sure that strict checks are not done for self-issued EE certsDr. David von Oheimb1-6/+9
2020-09-11check_chain_extensions(): Add check that CA cert includes key usage extensionDr. David von Oheimb2-4/+10
2020-09-11check_chain_extensions(): Add check that on empty Subject the SAN must be mar...Dr. David von Oheimb3-6/+9
2020-09-11check_chain_extensions(): Add check that AKID and SKID are not marked criticalDr. David von Oheimb3-7/+25
2020-09-11check_chain_extensions(): Add check that Basic Constraints of CA cert are mar...Dr. David von Oheimb3-2/+13
2020-09-11Extend X509 cert checks and error reporting in v3_{purp,crld}.c and x509_{set...Dr. David von Oheimb8-86/+241
2020-09-10apps_ui.c: Correct password prompt for ui_methodDr. David von Oheimb1-10/+8
2020-09-10STORE: Fix OSSL_STORE_attach() to check |ui_method| before useRichard Levitte1-5/+7
2020-09-10X509_NAME_cmp: restrict normal return values to {-1,0,1} to avoid confusion w...Dr. David von Oheimb1-19/+19
2020-09-10X509_NAME_oneline(): Fix output of multi-valued RDNs, escaping '/' and '+' in...Dr. David von Oheimb1-10/+16
2020-09-10Fix an EVP_MD_CTX leakMatt Caswell2-20/+35
2020-09-10Diverse build.info: Adjust pathsRichard Levitte3-4/+2
2020-09-10bugfix in apps/cmp.c and cmp_client.c: inconsistencies on retrieving extraCer...Dr. David von Oheimb1-7/+8
2020-09-10bugfix in ossl_cmp_msg_protect(): set senderKID and extend extraCerts also fo...Dr. David von Oheimb1-12/+12
2020-09-10bugfix in ossl_cmp_msg_add_extraCerts(): should include cert chain when using...Dr. David von Oheimb1-1/+2
2020-09-10Clean up CMP chain building for CMP signer, TLS client, and newly enrolled certsDr. David von Oheimb4-40/+67
2020-09-09ENCODER: Refactor provider implementations, and some cleanupRichard Levitte2-6/+2
2020-09-09In a non-shared build, don't include the md5 object files in legacy providerPauli1-1/+10
2020-09-09legacy: include MD5 code in legacy providerPauli1-0/+2
2020-09-08Allow unauthenticated CMP server if missing -trusted, -srvcert, and -secret o...Dr. David von Oheimb1-0/+8
2020-09-08Add 4 new OIDs for PKIX key purposes and 3 new CMP information typesDr. David von Oheimb3-5/+56
2020-09-08PEM: Make PEM_write_bio_PrivateKey_traditional() handle provider-native keysRichard Levitte2-90/+152
2020-09-08Add CMS AuthEnvelopedData with AES-GCM supportJakub Zelenka13-146/+554
2020-09-08OSSL_HTTP_parse_url(): add optional port number return parameter and strength...Dr. David von Oheimb4-40/+73
2020-09-08EVP: Move the functions and controls for setting and getting distidRichard Levitte2-82/+82
2020-09-08EVP: Expand the use of EVP_PKEY_CTX_md()Richard Levitte1-1/+2
2020-09-08EVP: Add support for delayed EVP_PKEY operation parametersRichard Levitte4-53/+337
2020-09-08New GOST PKCS12 standard supportDmitry Belyavskiy1-5/+45
2020-09-08EVP: Don't shadow EVP_PKEY_CTX_new* error recordsRichard Levitte1-3/+1
2020-09-08EVP: Preserve the EVP_PKEY id in a few more spotsRichard Levitte3-87/+146
2020-09-07Fix memory leaks in conf_def.cluxinyou1-0/+2
2020-09-05Slightly abstract ktls_start() to reduce OS-specific #ifdefs.John Baldwin2-14/+2
2020-09-05Fix the socket BIO control methods to use ktls_crypto_info_t.John Baldwin2-15/+8
2020-09-05X509_STORE_CTX_print_verify_cb(): add AKID and SKID output for (non-)trusted ...Dr. David von Oheimb2-7/+21
2020-09-05OSSL_CMP_CTX: rename field and its getter/setter from 'untrusted_certs' to 'u...Dr. David von Oheimb5-28/+28
2020-09-05Strengthen chain building for CMPDr. David von Oheimb6-33/+59
2020-09-05Add OSSL_CMP_CTX_get1_newChain() and related CLI option -chainoutDr. David von Oheimb2-0/+32
2020-09-05Fix coverity CID #1454815 - NULL ptr dereference in initthread.cShane Lontis1-1/+2
2020-09-05Fix coverity CID #1452769 & #1452771 - Arg passed to function that cannot be ...Shane Lontis1-4/+4
2020-09-05Fix coverity CID #1457935 - Check return value in ffc_params.c for BIO_indent...Shane Lontis1-4/+6
2020-09-05Fix coverity CID #1465967 & #1465968 - fix NULL dereference in dh_ameth.cShane Lontis1-3/+2
2020-09-05Fix coverity CID #1466378 - Incorrect expression in ec_backend.cShane Lontis1-1/+1
2020-09-03ASN1: Make ASN1_item_verify_ctx() work with provider-native keysRichard Levitte1-1/+1
2020-09-03EC: Remove one error record that shadows anotherRichard Levitte1-2/+0
2020-09-03EVP: Don't report malloc failure in new_raw_key_int()Richard Levitte1-3/+1
2020-09-03STORE: Stop the flood of errorsRichard Levitte1-6/+35
2020-09-03CORE: Fix small bug in passphrase cachingRichard Levitte1-1/+2
2020-09-03STORE: Fix potential memory leakRichard Levitte1-0/+1
generated by cgit v1.1 at 2024-08-12 01:00:57 +0000