Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge GH #454 X.509 name constraints | Jack Lloyd | 2016-03-16 | 8 | -7/+630 |
|\ | |||||
| * | Changes from GH #454 review | Jack Lloyd | 2016-03-16 | 2 | -68/+72 |
| | | |||||
| * | X.509 Name Constraints | Kai Michaelis | 2016-03-10 | 8 | -7/+626 |
| | | |||||
* | | Trivial warning fixes | Jack Lloyd | 2016-03-09 | 1 | -8/+12 |
| | | |||||
* | | Typos are easy to miss in code that is not compiled by default. | Jack Lloyd | 2016-03-06 | 1 | -1/+1 |
| | | |||||
* | | Merge GH #437 add X509_Certificate::v3_extensions | Jack Lloyd | 2016-03-06 | 4 | -20/+35 |
|\ \ | | | | | | | | | | | | | Makes it possible for an application to interpret some extension not supported by the library. | ||||
| * | | +added fields for custom x509 extensions | Christopher Bläsius | 2016-02-29 | 4 | -20/+33 |
| |/ | | | | | | | +Extensions now uses std::unique_ptr | ||||
* | | Fix ordering of Charset::transcode arguments | Jack Lloyd | 2016-03-06 | 1 | -1/+1 |
| | | | | | | | | GH #438 | ||||
* | | Remaining cppcheck fixes that are not covered by GH #444 | Daniel Neus | 2016-03-05 | 1 | -11/+5 |
| | | |||||
* | | cppcheck fixes: Class 'X' has a constructor with 1 argument that is not ↵ | Daniel Neus | 2016-03-05 | 8 | -25/+25 |
|/ | | | | explicit. | ||||
* | Fix remaining Wshadow warnings and enable on gcc and clang | René Korthaus | 2016-02-18 | 1 | -1/+1 |
| | |||||
* | Merge GH #408 Add final attribute on many classes | Jack Lloyd | 2016-01-12 | 6 | -17/+17 |
|\ | |||||
| * | Add final attribute to many classes | Jack Lloyd | 2016-01-10 | 6 | -17/+17 |
| | | | | | | | | | | | | | | In some cases this can offer better optimization, via devirtualization. And it lets the user know the class is not intended for derivation. Some discussion in GH #402 | ||||
* | | Prefix more member vars with m_ prefix | René Korthaus | 2016-01-11 | 2 | -85/+85 |
|/ | |||||
* | Mass-prefix member vars with m_ | René Korthaus | 2016-01-08 | 25 | -271/+283 |
| | |||||
* | String comparision fixes | Daniel Neus | 2016-01-04 | 8 | -11/+11 |
| | | | | fix PVS-Studio perfomance warnings | ||||
* | some trivial compiler/PVS-Studio warning fixes | Daniel Neus | 2015-12-22 | 2 | -2/+2 |
| | |||||
* | Reroot the exception hierarchy into a toplevel Exception class | Jack Lloyd | 2015-12-11 | 5 | -16/+16 |
| | | | | | | | | As the alternatives are unfortunate for applications trying to catch all library errors, and it seems deriving from std::runtime_error causes problems with MSVC DLLs (GH #340) Effectively reverts 2837e915d82e43 | ||||
* | Update and consolidate the test framework. | Jack Lloyd | 2015-11-11 | 1 | -1/+1 |
| | | | | | | | | | | | The tests previously had used 4 to 6 different schemes internally (the vec file reader framework, Catch, the old InSiTo Boost.Test tests, the PK/BigInt tests which escaped the rewrite in 1.11.7, plus a number of one-offs). Converge on a design that works everywhere, and update all the things. Fix also a few bugs found by the test changes: SHA-512-256 name incorrect, OpenSSL RC4 name incorrect, signature of FFI function botan_pubkey_destroy was wrong. | ||||
* | Add check for path validation result in Credentials_Manager. GH #324 | Jack Lloyd | 2015-11-04 | 2 | -1/+4 |
| | |||||
* | Merge pull request #313 from randombit/path-validation-fixes | Jack Lloyd | 2015-10-26 | 7 | -96/+148 |
|\ | | | | | Fix cert validation bugs found by x509test. | ||||
| * | Fix cert validation bugs found by x509test. | Jack Lloyd | 2015-10-23 | 7 | -96/+148 |
| | | | | | | | | Add test suite with certs from x509test | ||||
* | | Update doc for issuer_dn() and subject_dn() | Simon Warta | 2015-10-20 | 2 | -8/+2 |
|/ | | | | [ci skip] | ||||
* | Export X.509 certificates to ffi and python | Jack Lloyd | 2015-10-01 | 1 | -0/+1 |
| | | | | Missing path validation, probably other things | ||||
* | Avoid concatination of chars | Simon Warta | 2015-09-22 | 1 | -1/+1 |
| | | | | | | | Ever tried? auto str = "some long string"; auto str2 = str + '\n'; It's not with the brainfuck finding the bug. | ||||
* | Remove use of lookup.h in favor of new T::create API. | Jack Lloyd | 2015-09-21 | 3 | -7/+8 |
| | |||||
* | Sometimes we don't know the input format. But it is one of two | Simon Warta | 2015-08-11 | 3 | -6/+6 |
| | |||||
* | Remove string constructor of X509_Time() | Simon Warta | 2015-08-11 | 4 | -10/+10 |
| | | | | | | | | | | | * Break down string representations to to_string() and readable_string() * Add m_ prefix to member variable names * Fix order of methods * Move comments Doxygen friendly to header * Make set_to() private (future subjejt of refectoring); People should use constructor Closes #185 | ||||
* | Remove unused pkcs8 includes | Simon Warta | 2015-08-03 | 4 | -4/+0 |
| | | | | Only botan-cli, botan-tests and the FFI module depend on PKCS8 | ||||
* | x509: Add missing overrides | Daniel Seither | 2015-07-30 | 6 | -77/+90 |
| | |||||
* | Fix typos | Simon Warta | 2015-07-24 | 2 | -3/+3 |
| | | | | Thanks to @vlajos https://github.com/vlajos/misspell_fixer | ||||
* | Refactor internal/filesystem.h | Simon Warta | 2015-07-16 | 1 | -2/+2 |
| | | | | Closes #198 | ||||
* | Make Botan compile when only some modules are enabled | Simon Warta | 2015-07-03 | 1 | -1/+0 |
| | | | | Fixes #146. | ||||
* | Fix module dependencies of x509 and pubkey | Simon Warta | 2015-06-30 | 1 | -0/+2 |
| | |||||
* | lib/cert: Convert &vec[0] to vec.data() | Simon Warta | 2015-06-27 | 2 | -6/+10 |
| | |||||
* | Fix code that triggers a strange MSVC 'performance warning' | git | 2015-04-08 | 1 | -1/+1 |
| | | | | Github pull 74 from Chris Desjardins | ||||
* | Fix memory leak in TLS tests. Remove last few remaining uses of auto_ptr. | lloyd | 2015-03-08 | 2 | -0/+7 |
| | |||||
* | Hide all uses of boost filesystem in fs.cpp. Use readdir as an | lloyd | 2015-02-21 | 2 | -22/+7 |
| | | | | | alternate implementation for Unix and add some feature checks so a boost-free build of the tests and command line are possible again. | ||||
* | Remove algo factory, engines, global RNG, global state, etc. | lloyd | 2015-02-04 | 6 | -12/+21 |
| | | | | | | | | | | | | | | | Convert all uses of Algorithm_Factory and the engines to using Algo_Registry The shared pool of entropy sources remains but is moved to EntropySource. With that and few remaining initializations (default OIDs and aliases) moved elsewhere, the global state is empty and init and shutdown are no-ops. Remove almost all of the headers and code for handling the global state, except LibraryInitializer which remains as a compatability stub. Update seeding for blinding so only one hacky almost-global RNG instance needs to be setup instead of across all pubkey uses (it uses either the system RNG or an AutoSeeded_RNG if the system RNG is not available). | ||||
* | Ensure all files have copyright and license info. | lloyd | 2015-01-10 | 45 | -51/+51 |
| | | | | | Update license header line to specify the terms and refer to the file, neither of which it included before. | ||||
* | If no certificate stores at all are available skip OCSP checks | lloyd | 2015-01-04 | 1 | -5/+7 |
| | |||||
* | Fix a couple things pointed out by VC++ warnings. | lloyd | 2014-12-22 | 1 | -4/+3 |
| | |||||
* | On Windows fs::path::native() is a u16 string | lloyd | 2014-11-22 | 1 | -1/+1 |
| | |||||
* | Remove unused includes | lloyd | 2014-11-18 | 2 | -2/+0 |
| | |||||
* | Various small fixes and cleanups, new is_prime util | lloyd | 2014-11-03 | 2 | -1/+3 |
| | |||||
* | Fix various warnings from VC++ 2014 and add missing include | lloyd | 2014-10-31 | 2 | -5/+5 |
| | |||||
* | Add default constructors to work around VC2013 issue. Github #17 | lloyd | 2014-05-01 | 1 | -0/+2 |
| | |||||
* | Better TLS checks | lloyd | 2014-04-10 | 1 | -1/+2 |
| | |||||
* | Make X.509 extension decoding failures point back to the problem extension | lloyd | 2014-04-05 | 2 | -10/+17 |
| | |||||
* | X.509 path validation now performs all possible tests and returns a | lloyd | 2014-04-05 | 4 | -137/+153 |
| | | | | | | set of error codes, instead of failing immediately on first error. This prevents a 'weak' error like an expired certificate from hiding a major error such as signature validation failure or hard revocation. |