aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib/x509/x509_ext.h
Commit message (Collapse)AuthorAgeFilesLines
* Merge X.509 header filesJack Lloyd2020-10-311-270/+1
|
* Merge some of the ASN.1 headersJack Lloyd2020-10-311-1/+0
| | | | | Deprecate asn1_str.h asn1_time.h asn1_oid.h and alg_id.h with all contents moved to existing asn1_obj.h
* Add testsJack Lloyd2019-09-121-1/+2
| | | | | Also implement Extensions::get_extension_bits which was declared but not implemented !
* Add Extensions::removeJack Lloyd2019-09-101-0/+5
| | | | From #2073
* Reduce usage of oids.h with the addition of some helpers on OIDJack Lloyd2019-08-041-1/+1
|
* Fix some warnings from GCC 9Jack Lloyd2019-03-251-1/+1
| | | | New redundant-move and pessimizing-move warnings found some
* Make exceptions easier to translate to error codesJack Lloyd2018-11-231-1/+1
| | | | | | | | | | | Avoid throwing base Botan::Exception type, as it is difficult to determine what the error is in that case. Add Exception::error_code and Exception::error_type which allows (for error code) more information about the error and (for error type) allows knowing the error type without requiring a sequence of catches. See GH #1742
* Remove support for Visual C++ 2013Jack Lloyd2018-10-011-2/+0
| | | | Closes GH #1557
* If cert extension parsing fails, replace the object with UnknownJack Lloyd2018-08-231-1/+6
| | | | | | Allows the parse to complete and even allows examining the extension. GH #1652
* Include AKID in generated self signed certificatesJack Lloyd2018-03-061-1/+2
| | | | GH #1007
* Allow applications to easily override extensions in cert requestsJack Lloyd2018-01-231-0/+10
| | | | | | | | | | | | | Refactor the code so it's possible to create a cert request without going through x509self.h (PKCS10_Request::create). Add Extensions::add_new, so we can add an extension to a PKCS10 request without stomping on one already included by the application. Refactor the X509 unit tests to avoid (some) duplicated key creations. Just create a key once at the start and use it for all of the tests. GH #1428
* add the detection for the ca issuers field(1.3.6.1.5.5.7.48.2) in x509 ↵Patrik Fiedler2018-01-031-3/+8
| | | | certificates
* Fix various x509 path validation bugs + path building with ambiguous DNsFabian Weissberg2017-12-201-0/+38
| | | | Signed-off-by: Fabian Weissberg <[email protected]>
* Fix encoding of subject key identifierJack Lloyd2017-11-161-2/+2
| | | | | | Changed in #884 - we were copying the entire public key as the public key id. Instead hash it with whatever hash we are using to sign the certificate.
* Fix a memory leak in the case where certificate extension decoding fails.Jack Lloyd2017-11-161-12/+15
| | | | | | Introduced in #884 Found by OSS-Fuzz (bug 4249)
* Refactor certificate extension handlingJack Lloyd2017-11-141-83/+249
|
* Apply final annotations to the library alsoJack Lloyd2017-09-221-4/+4
| | | | | Done by a perl script which converted all classes to final, followed by selective reversion where it caused compilation failures.
* Header file cleanupsJack Lloyd2017-09-211-0/+1
| | | | Some help from include-what-you-use
* Change header guard format to BOTAN_FOO_H_Jack Lloyd2017-09-201-2/+2
| | | | | | ISO C++ reserves names with double underscores in them Closes #512
* Complete the final annotation changesJack Lloyd2017-09-191-1/+1
|
* Add API stability annotations.Jack Lloyd2017-09-191-18/+18
| | | | | Defined in build.h, all equal to BOTAN_DLL so ties into existing system for exporting symbols.
* Content:Tomasz Frydrych2017-04-031-12/+12
| | | | | | | | | * fixes for deprecated constructions in c++11 and later (explicit rule of 3/5 or implicit rule of 0 and other violations) * `default` specifier instead of `{}` in some places(probably all) * removal of unreachable code (for example `return` after `throw`) * removal of compilation unit only visible, but not used functions * fix for `throw()` specifier - used instead `BOTAN_NOEXCEPT` * removed not needed semicolons
* Convert to using standard uintN_t integer typesJack Lloyd2016-12-181-36/+36
| | | | | | Renames a couple of functions for somewhat better name consistency, eg make_u32bit becomes make_uint32. The old typedefs remain for now since probably lots of application code uses them.
* Rename some methods, add more tests and docsRené Korthaus2016-12-041-4/+42
|
* Allow custom extensions in X509_Cert_OptionsRené Korthaus2016-12-021-0/+23
| | | | | Allow custom extensions in CA-signed cert requests Add templated getter for extensions
* Move cert/x509 to top level and pem and pbes2 to pubkey.Jack Lloyd2016-11-031-0/+505
The `cert` dir was just an artifact of having previously supported CVC (smartcard cert format), removed a long time ago. The pem and pbes2 code is directly related to the pubkey code, in fact the only caller of pbes2 (likely anywhere, not just in the library) is in pkcs8.cpp
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-29 03:34:13 +0000