Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Make the random serial numbers 256 bits to ensure they will never | lloyd | 2010-11-29 | 1 | -1/+1 |
| | | | | | | collide. One might, theoretically, generate 2^64 certificates with a single CA (say, for each particle in a planet wide cloud of smart dust), but 2^128 does not seem possible. | ||||
* | Add X509_Certificate::to_string | lloyd | 2010-11-29 | 2 | -2/+110 |
| | | | | The x509info example now just calls that | ||||
* | Overflow warning in MSVC | lloyd | 2010-11-29 | 1 | -1/+2 |
| | |||||
* | Add a BOTAN_DEPRECATED macro which can provide compile-time | lloyd | 2010-11-02 | 1 | -0/+1 |
| | | | | deprecation warnings (at least for GCC and VC++). Use in some places. | ||||
* | Doxygen updates. | lloyd | 2010-11-02 | 1 | -0/+3 |
| | | | | | Remove version of search_map that returns two distinguishing results; only used in one place, and that can be replaced by a call to count() | ||||
* | s/u32bit/size_t/ | lloyd | 2010-10-29 | 1 | -2/+2 |
| | |||||
* | s/u32bit/size_t/ | lloyd | 2010-10-18 | 4 | -38/+38 |
| | |||||
* | Split some of the ASN.1 types into their own headers | lloyd | 2010-10-13 | 2 | -0/+2 |
| | |||||
* | Use output_length() instead of OUTPUT_LENGTH pseudo-property | lloyd | 2010-10-13 | 1 | -1/+1 |
| | |||||
* | Fix CRL reason codes and updating of CRLs. Add tests for both cases. | lloyd | 2010-10-07 | 4 | -42/+7 |
| | |||||
* | Forward port CRL fixes from rev 7bb2001cd554a1acc3d345914ea710ff0e1d3a6b | lloyd | 2010-10-07 | 1 | -7/+12 |
| | |||||
* | Add dependencies | lloyd | 2010-09-24 | 7 | -0/+31 |
| | |||||
* | Add info.txt file | lloyd | 2010-09-21 | 1 | -0/+1 |
| | |||||
* | Remove searching with an arbitrary predicate from X509_Store | lloyd | 2010-09-20 | 4 | -197/+0 |
| | |||||
* | Move certificate store to its own dir | lloyd | 2010-09-20 | 3 | -0/+1 |
| | |||||
* | Add missing info files | lloyd | 2010-09-20 | 5 | -0/+6 |
| | |||||
* | Add CRL storage possibilities | lloyd | 2010-09-20 | 3 | -17/+93 |
| | |||||
* | Hide X509_Store::check_sig | lloyd | 2010-09-20 | 1 | -2/+2 |
| | |||||
* | Add a (clunky) function X509_Object::hash_used_for_signature that | lloyd | 2010-09-20 | 2 | -0/+26 |
| | | | | | | | returns the hash function that was used to create the signature. Useful for a future X509 path validator that inform the user which hash(es) they are relying on and/or allowing the ability to reject hashes which are undesirable (MD2, MD5, etc) | ||||
* | Don't use SecureVector to store certificate data; mlock'ed memory in | lloyd | 2010-09-17 | 3 | -8/+8 |
| | | | | | particular is precious. Really these could probably just as easily be std::vectors since even zeroizing the memory isn't relevant here. | ||||
* | Define a simpler Certificate_Store interface which should be much | lloyd | 2010-09-17 | 3 | -45/+56 |
| | | | | | easier to implement without requiring in-memory linear searching (eg a flatfile store or SQL database with indexes). | ||||
* | Hide X509_Object constructor | lloyd | 2010-09-17 | 1 | -11/+11 |
| | |||||
* | Remove dependencies on X509_Store | lloyd | 2010-09-17 | 4 | -12/+23 |
| | |||||
* | Split up src/cert/x509 into a set of modules, though mostly mutually | lloyd | 2010-09-17 | 26 | -47/+0 |
| | | | | dependent right now. | ||||
* | Update all uses of MemoryRegion::append to use either push_back or operator+= | lloyd | 2010-09-15 | 6 | -22/+20 |
| | |||||
* | Remove more uses of vector to pointer implicit conversions | lloyd | 2010-09-13 | 1 | -1/+1 |
| | |||||
* | Anywhere where we use MemoryRegion::begin to get access to the raw pointer | lloyd | 2010-09-13 | 1 | -7/+5 |
| | | | | | representation (rather than in an interator context), instead use &buf[0], which works for both MemoryRegion and std::vector | ||||
* | Make round_up and round_down templates instead of fixed to use u32bits | lloyd | 2010-06-29 | 1 | -1/+1 |
| | |||||
* | Define X509_Object::encode in terms of BER_encode and PEM_encode | lloyd | 2010-06-21 | 1 | -22/+12 |
| | |||||
* | Doxygen | lloyd | 2010-06-21 | 1 | -2/+34 |
| | |||||
* | Replace "@return a blah" and "@return the blah" with just "@return blah" | lloyd | 2010-06-16 | 9 | -48/+48 |
| | |||||
* | More Doxygen updates/fixes | lloyd | 2010-06-15 | 6 | -35/+59 |
| | |||||
* | Fix a few hundred Doxygen warnings | lloyd | 2010-06-15 | 8 | -8/+23 |
| | |||||
* | Use X509::BER_encode. Saves 12 lines. Nice | lloyd | 2010-06-15 | 1 | -18/+6 |
| | |||||
* | Remove some C-style casts | lloyd | 2010-04-23 | 1 | -2/+2 |
| | |||||
* | Initialize m_pk to null in constructor | lloyd | 2010-03-17 | 1 | -0/+2 |
| | |||||
* | Remove config options to toggle if X.509 extensions are critical or | lloyd | 2010-03-10 | 4 | -48/+47 |
| | | | | | | | | not. Instead provide via Extensions::add(). No way to modify behavior currently, it just follows the previous default police. Remove the config options from Library_State entirely. Die, mutable singletons, die. | ||||
* | Make cert decoding errors more verbose | lloyd | 2010-03-10 | 1 | -2/+2 |
| | |||||
* | Modify pubkey classes to take names instead of object pointers. | lloyd | 2010-03-08 | 6 | -29/+23 |
| | | | | | Remove use of look_pk from the source and examples, instead instantiate classes directly. | ||||
* | Remove the now no-op classes PK_Encrypting_Key, | lloyd | 2010-03-08 | 5 | -47/+7 |
| | | | | | PK_Decrypting_Key, PK_Signing_Key, PK_Verifying_with_MR_Key, and PK_Verifying_wo_MR_Key. | ||||
* | Changes to CVC to deal with the fact that you can't create an uninitialized | lloyd | 2010-03-04 | 3 | -8/+10 |
| | | | | ECDSA_PublicKey object anymore. | ||||
* | The code in pk_codecs was actually entirely tied to the code in | lloyd | 2010-03-04 | 2 | -2/+0 |
| | | | | | | pubkey; you literally could not compile any pubkey code without it. Move it up to the pubkey dir, it wasn't at all useful to have it in its own dir. | ||||
* | Add a new function to Public_Key, algorithm_identifier(), which just | lloyd | 2010-03-04 | 1 | -7/+1 |
| | | | | | returns the AlgorithmIdentifier representing this scheme (OID + domain params if any). | ||||
* | Remove BOTAN_DLL from templates, VC++ doesn't like it | lloyd | 2010-03-03 | 2 | -2/+2 |
| | |||||
* | Reorganize where some CVC code goes to avoid template bloat + VC problems | lloyd | 2010-03-03 | 7 | -95/+66 |
| | |||||
* | CVC assumed sigs were DER encoded by default. Not true | lloyd | 2010-03-02 | 4 | -25/+7 |
| | |||||
* | Remove ECDSA_Signature encoding/decoding cruft | lloyd | 2010-03-02 | 3 | -83/+39 |
| | |||||
* | Cleanups, remove dead code | lloyd | 2010-03-02 | 8 | -96/+27 |
| | |||||
* | Port in the code for forming the EAC encoding of an ECDSA key, so now | lloyd | 2010-03-02 | 1 | -19/+47 |
| | | | | generating new CVC certs might actually work. | ||||
* | Lots of internal CVC cleanups | lloyd | 2010-03-02 | 13 | -192/+121 |
| |