| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
code as well as the code for handling PKCS #10 requests.
|
| |
|
|
|
|
|
|
| |
In reality, Config was a singleton, with the only owner being the
Library_State object. Theoretically one could create and use another Config
instance, but in practice it was never done. Reflect the reality and inline
the members and public functions of Config in Library_State, removing Config
entirely.
|
| | |
|
| | |
|
| |
|
|
| |
argument in favor of referencing the global PRNG argument
|
| |
|
|
| |
instead of always using the global PRNG.
|
| |
|
|
| |
RandomNumberGenerator reference. Update all callers.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
random bits. Now they take a reference to a RandomNumberGenerator object.
This was applied several times out, so now the constructors to private
key objects also take a RandomNumberGenerator& argument. This is also true
for a number of randomized algorithms (Miller-Rabin, for instance).
You can get a reference to the global PRNG with
global_state().prng_reference()
This is a provisional thing: and warning: it is not thread safe! If this
is a problem instead keep per-thread PRNGs and pass them were needed.
|
| |
|
|
| |
each caller.
|
| |
|
|
|
|
|
|
| |
Including enums.h in needed places since asn1_int.h doesn't pull it in
anymore.
Remove Config::choose_sig_format, and move its logic into its only
caller, the (global!) choose_sig_format in x509_ca.cpp
|
| |
|
|
|
|
|
|
|
|
|
| |
- The allow_ca policy value is no longer checked. Callers should check
if the request is for a CA cert and treat it accordingly; this makes
it simpler to to case-by-case decisions (expecially among multiple
threads)
- Instead of a single time value, a u32bit representing the number of
seconds from now the certificate should expire, the start and end times
are passed explicitly as two X509_Time values.
|
| |
|
|
|
|
| |
the actual copyright holders. For rationale, see my post to botan-devel
on April 9, subject 'Changing license to directly reflect contributors'
(http://www.randombit.net/pipermail/botan-devel/2008-April/000527.html)
|
| |
|
|
|
| |
updated dates on files that have actually changed this year. This makes
the diff across versions readable again.
|
| |
|
|
|
|
|
| |
but might as well keep it up to date. And it's easier to do it once with
a 'perl -pi' command than to update each file over time.
Apologies to anyone looking at diffs.
|
| |
|
|
| |
compiling under the Dinkumware libraries.
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
x509self.cpp, the other a block of code in X509_CA's constructor).
|
| |
|
|
|
|
|
|
| |
declaration.
Remove not_before and not_after variables, as they were only used once.
Use the computed Key_Constraints value when signing a new certificate.
|
| |
|
|
| |
a standalone function.
|
| |
|
|
|
| |
of stand-alone functions. Store the configuration in a distinct
object, rather than just a map inside the library state.
|
| | |
|
| |
|
|
| |
using the version in X509_Object.
|
| | |
|
| |
|
|
|
| |
rather than creating it internally. The older version (still used
internally) creates the Extensions object as before and passes it on.
|
| |
|
|
| |
Initial implementation of a factory for extension objects
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
and issuer forms are derived.
Add Extensions::contents_to, which iterates over the set and
adds each extension's contents.
Add a new explicit info field for is_ca
Implement Authority_Key_Id::decode_inner (incomplete, only handles
the keyid form).
|
| |
|
|
|
| |
that uses them. These changes are not backwards compatible, this commit
updates all uses of the APIs within the library.
|
| |
|
