- 06 10月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 06 9月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
The old code was painfully primitive and couldn't handle distinct certificates using the same subject name. The new code performs several tests on a candidate issuer certificate based on certificate extensions. It also adds several callbacks to X509_VERIFY_CTX so its behaviour can be customised. Unfortunately some hackery was needed to persuade X509_STORE to tolerate this. This should go away when X509_STORE is replaced, sometime... This must have broken something though :-(
-
- 17 6月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
After some messing around this seems to work but needs a few more tests. Working out the syntax for sk_set_cmp_func() (cast it to a function that itself returns a function pointer) was painful :-( Needs some testing to see what other compilers think of this syntax. Also needs similar stuff for ASN1_SET_OF etc etc.
-
- 11 6月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
to support multiple calls. New function to retrieve email address from certificates and requests.
-
- 01 6月, 2000 2 次提交
-
-
由 Geoff Thorpe 提交于
libeay.num and ssleay.num.
-
由 Geoff Thorpe 提交于
yet tighter, and also put some heat on the rest of the library by insisting (correctly) that compare callbacks used in stacks are prototyped with "const" parameters. This has led to a depth-first explosion of compiler warnings in the code where 1 constification has led to 3 or 4 more. Fortunately these have all been resolved to completion and the code seems cleaner as a result - in particular many of the _cmp() functions should have been prototyped with "const"s, and now are. There was one little problem however; X509_cmp() should by rights compare "const X509 *" pointers, and it is now declared as such. However, it's internal workings can involve recalculating hash values and extensions if they have not already been setup. Someone with a more intricate understanding of the flow control of X509 might be able to tighten this up, but for now - this seemed the obvious place to stop the "depth-first" constification of the code by using an evil cast (they have migrated all the way here from safestack.h). Fortunately, this is the only place in the code where this was required to complete these type-safety changes, and it's reasonably clear and commented, and seemed the least unacceptable of the options. Trying to take the constification further ends up exploding out considerably, and indeed leads directly into generalised ASN functions which are not likely to cooperate well with this.
-
- 17 5月, 2000 2 次提交
-
-
由 Ben Laurie 提交于
-
由 Ben Laurie 提交于
-
- 02 5月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
"Jan Mikkelsen" <janm@transactionsite.com> correctly states that the OpenSSL header files have #include's and extern "C"'s in an incorrect order. Thusly fixed.
-
- 26 3月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
-
- 07 3月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 26 2月, 2000 2 次提交
-
-
由 Bodo Möller 提交于
where the new functions are mentioned.
-
由 Dr. Stephen Henson 提交于
-
- 11 2月, 2000 1 次提交
-
-
由 Ralf S. Engelschall 提交于
-Wmissing-prototypes -Wmissing-declarations -Wnested-externs -Winline''.
-
- 07 2月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
This better reflects their behaviour.
-
- 07 1月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Fix so CRLDistributionPoints relativeName option uses the correct type.
-
- 29 12月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
represent everything by OIDs.
-
- 02 12月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
either and has a static and dynamic mix.
-
- 29 11月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
yet. Add a function X509_STORE_CTX_purpose_inherit() which implements the logic of "inheriting" purpose and trust from a parent structure and using a default: this will be used in the SSL code and possibly future S/MIME. Partial documentation of the 'verify' utility. Still need to document how all the extension checking works and the various error messages.
-
- 26 11月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Extend the X509_PURPOSE structure to include shortnames for purposed and default trust ids. Still need some extendable trust checking code and integration with the SSL and S/MIME code.
-
- 24 11月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Fix so EVP_PKEY_rset_*() check return codes.
-
- 19 11月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 04 11月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
certificate: currently this includes trust settings and a "friendly name".
-
- 26 10月, 1999 1 次提交
-
-
由 Bodo Möller 提交于
Submitted by: Lennart Bång, Bodo Möller
-
- 20 10月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
tolerated in certificates.
-
- 13 10月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
ultimately lead to certificate chain verification. It is VERY EXPERIMENTAL at present though.
-
- 09 10月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 26 8月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
config file (change RAW to DER).
-
- 22 6月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
documentation to reflect the STACK_OF(CONF_VALUE) change to the CONF lib and use ANSI typedefs for X509V3_EXT_I2D and X509V3_EXT_FREE.
-
- 21 6月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
seemed like a good idea at the time... several hours later it was rather obvious that these are used all over the place making the changes rather extensive.
-
- 11 6月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
to use 'void *' rather than 'char *' for an "arbitrary extension".
-
- 10 5月, 1999 2 次提交
-
-
由 Ralf S. Engelschall 提交于
-Wpointer-arith -Wcast-align -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -Winline'' with EGCS 1.1.2+
-
由 Dr. Stephen Henson 提交于
-
- 27 4月, 1999 1 次提交
-
-
由 Ulf Möller 提交于
-
- 26 4月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 24 4月, 1999 2 次提交
-
-
由 Dr. Stephen Henson 提交于
script, translates function codes better and doesn't need the K&R function prototypes to work (NB. the K&R prototypes can't be wiped just yet: they are still needed by the DEF generator...). I also ran the script with the -rewrite option to update all the header and source files.
-
由 Bodo Möller 提交于
Submitted by: Reviewed by: PR:
-
- 23 4月, 1999 1 次提交
-
-
由 Ben Laurie 提交于
-
- 22 4月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
this stuff.
-
- 20 4月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-