| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
| |
Previous commit changed the parsing of <libs> and <frameworks> from
being lists to maps. But this broke macOS certstore which defined
frameworks on individual lines, causing only one to be used.
Add a test that maps don't have duplicated entries, and fix the info.txt
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
| |
Discovered in #1885, the "Verisign Class 3 Public Primary
Certification Authority - G3" is a v1 certificate and is still
included in distro trust stores.
|
| |
|
|
|
|
|
| |
Both because that's the more common term, and because iOS/watchOS also
uses the Darwin kernel, but we have a distinct target for mobile.
|
|
|
|
| |
New redundant-move and pessimizing-move warnings found some
|
|
|
|
|
| |
A few older APIs use as_string where everywhere else uses to_string.
Add to_string's where missing, and deprecate X::as_string.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
FIX: build on non-macOS platforms
FIX: move constructor of scoped_CFType
implement Certificate_Store_MacOS::all_subjects()
Refactor: factor out X509 policy creation
FIX: cosmetics
FIX: code cosmetics
* Refactor: use a unique_ptr rather than free()
* Refactor: use a unique_ptr rather than free()
* use std::shared_ptr<> for Pimpl
* double-check opening of cert stores
* add some documentation
* copyright notice dates
shush clang compiler warning -Wcast-qual
See here for details: https://bugs.webkit.org/show_bug.cgi?id=177893
shush -Wmissing-braces on Travis CI (hopefully)
FIX: crash when no certificate matches
FIX: 'normalize' DNs according to Apple's needs
FIX: take early review comments into account
FIX: compiler warning regarding variable shadowing
add timers to the cerstore tests
FIX: catch invalid SHA-1 parameter
FIX: handle ambiguous match in .find_cert_by_pubkey_sha1() according to the super-class's documentation
FIX: API documentation
FIX: cosmetics
make Certificate_Store_MacOS::find_crl_for() return {}
FIX: low-hanging review comments
FIX: more review comments
FIX: compiler warnings
|
| |
|
| |
|
|
|
|
|
|
| |
Only used in one place, where const time doesn't matter, but can't hurt.
Remove low_bit, can be replaced by ctz.
|
| |
|
|
|
|
| |
static_casts for the compiler god
|
|
|
|
|
|
|
|
|
|
|
| |
Avoid throwing base Botan::Exception type, as it is difficult to
determine what the error is in that case.
Add Exception::error_code and Exception::error_type which allows
(for error code) more information about the error and (for error type)
allows knowing the error type without requiring a sequence of catches.
See GH #1742
|
|
|
|
| |
Closes GH #1557
|
| |
|
|
|
|
| |
Accidentally disabled in 643a4041bedc
|
|
|
|
|
|
| |
Allows the parse to complete and even allows examining the extension.
GH #1652
|
|
|
|
| |
Remove "Invalid argument" and "Decoding Error" prefixes
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Let DER_Encoder write to a user specified vector instead of only to an
internal vector. This allows encoding to a std::vector without having
to first write to a locked vector and then copying out the result.
Add ASN1_Object::BER_encode convenience method. Replaces
X509_Object::BER_encode which had the same logic but was restricted to
a subtype. This replaces many cases where DER_Encoder was just used
to encode a single object (X509_DN, AlgorithmIdentifier, etc).
|
| |
|
| |
|
|
|
|
|
| |
More than long enough, and saves quite a bit of space especially for
SHA-512 certificates.
|
| |
|
|
|
|
|
|
|
|
| |
If they are they must be either equal (self-signed) or not equal
(self-issued). This allows skipping the verification which reduces
startup overhead eg when reading the system certificate store.
On my systems's cert store it saves about 1/3 of the signature checks.
|
| |
|
|
|
|
|
|
|
| |
This allows retreiving the original ordering which is required for
DN string encoding as defined in RFC 4514
Fixes #336
|
|
|
|
| |
Able to create certificate chain and verify it with OpenSSL 1.1.1
|
| |
|
| |
|
|\ |
|
| | |
|
| |
| |
| |
| | |
GH #1490
|
|/
|
|
| |
GH #1489
|
|
|
|
| |
GH #1446
|
|
|
|
| |
GH #1007
|
|
|
|
| |
Fixes #277
|
|\ |
|
| | |
|
| | |
|