Dr. Stephen Henson [Thu, 10 Apr 2008 11:12:42 +0000 (11:12 +0000)]
Ignore nonsensical flags for signed receipts.
Dr. Stephen Henson [Thu, 10 Apr 2008 11:00:47 +0000 (11:00 +0000)]
Add CMS signed receipt genration and verification docs.
Dr. Stephen Henson [Thu, 10 Apr 2008 10:46:11 +0000 (10:46 +0000)]
Spellcheck CMS docs.
Dr. Stephen Henson [Wed, 9 Apr 2008 23:13:49 +0000 (23:13 +0000)]
Signed receipt request function documentation.
Dr. Stephen Henson [Wed, 9 Apr 2008 22:09:45 +0000 (22:09 +0000)]
Correct references to smime in cms app.
Dr. Stephen Henson [Wed, 9 Apr 2008 20:59:45 +0000 (20:59 +0000)]
Update docs.
Dr. Stephen Henson [Wed, 9 Apr 2008 20:55:55 +0000 (20:55 +0000)]
Add CMS_uncompress manual page.
Dr. Stephen Henson [Wed, 9 Apr 2008 17:04:36 +0000 (17:04 +0000)]
Add CMS_compress() docs.
Dr. Stephen Henson [Wed, 9 Apr 2008 16:08:16 +0000 (16:08 +0000)]
More CMS API documentation.
Andy Polyakov [Wed, 9 Apr 2008 12:06:42 +0000 (12:06 +0000)]
Clarifying comment.
Andy Polyakov [Wed, 9 Apr 2008 11:36:04 +0000 (11:36 +0000)]
Do BN_nist_mod_384 by the book, as cheating doesn't work. Other functions
will be revised too.
PR: 1593
Dr. Stephen Henson [Tue, 8 Apr 2008 22:44:56 +0000 (22:44 +0000)]
Fix various typos, update SMIMECapabilities description.
Dr. Stephen Henson [Tue, 8 Apr 2008 22:35:32 +0000 (22:35 +0000)]
Correct d2i/i2d typos.
Dr. Stephen Henson [Tue, 8 Apr 2008 22:27:10 +0000 (22:27 +0000)]
Initial CMS API documentation.
Dr. Stephen Henson [Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)]
Implement CMS_NOCRL.
Lutz Jänicke [Mon, 7 Apr 2008 06:37:05 +0000 (06:37 +0000)]
Fix URI of OpenSSL Request Tracker information
PR: 1661
Dr. Stephen Henson [Sun, 6 Apr 2008 16:29:47 +0000 (16:29 +0000)]
Set contentType attribute just before signing to allow encapsulated content
type to be set at any time in applications.
Dr. Stephen Henson [Sun, 6 Apr 2008 15:53:29 +0000 (15:53 +0000)]
Fix typo and add header files to err library.
Dr. Stephen Henson [Sun, 6 Apr 2008 15:41:25 +0000 (15:41 +0000)]
Give consistent return value and add error code for duplicate certificates.
Dr. Stephen Henson [Fri, 4 Apr 2008 00:06:43 +0000 (00:06 +0000)]
Delete nonexistant function from pkcs7.h header file. WIN32 build fix from
stable branch. Sync and update ordinals.
Dr. Stephen Henson [Thu, 3 Apr 2008 23:29:15 +0000 (23:29 +0000)]
Make mk1mf.pl recognize no-cms.
Dr. Stephen Henson [Thu, 3 Apr 2008 23:25:43 +0000 (23:25 +0000)]
Rename runex.pl to cms-examples.pl
Dr. Stephen Henson [Wed, 2 Apr 2008 11:44:00 +0000 (11:44 +0000)]
Update CHANGES.
Dr. Stephen Henson [Wed, 2 Apr 2008 11:24:22 +0000 (11:24 +0000)]
Update CHANGES.
Dr. Stephen Henson [Wed, 2 Apr 2008 10:48:34 +0000 (10:48 +0000)]
Since OID NIDs with 0.9.8.
Dr. Stephen Henson [Tue, 1 Apr 2008 16:29:42 +0000 (16:29 +0000)]
Avoid warnings.
Dr. Stephen Henson [Tue, 1 Apr 2008 15:16:15 +0000 (15:16 +0000)]
Add signed receipt tests.
Andy Polyakov [Tue, 1 Apr 2008 08:39:08 +0000 (08:39 +0000)]
Fix fast reduction on NIST curves (as well BN_NIST_ADD_ONE macro).
PR: 1593
Dr. Stephen Henson [Mon, 31 Mar 2008 18:21:30 +0000 (18:21 +0000)]
Fix it properly this time....
Dr. Stephen Henson [Mon, 31 Mar 2008 18:14:10 +0000 (18:14 +0000)]
Fix macro.
Dr. Stephen Henson [Mon, 31 Mar 2008 15:03:55 +0000 (15:03 +0000)]
Use correct headers for signed receipts. Use consistent naming.
Update cms-test.pl to support OpenSSL 0.9.8.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:11:25 +0000 (21:11 +0000)]
Update dependencies.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:08:37 +0000 (21:08 +0000)]
Remove unnecessary header.
Dr. Stephen Henson [Sat, 29 Mar 2008 00:54:24 +0000 (00:54 +0000)]
Update docs.
Dr. Stephen Henson [Fri, 28 Mar 2008 19:43:16 +0000 (19:43 +0000)]
Signed receipt generation code.
Dr. Stephen Henson [Fri, 28 Mar 2008 13:15:39 +0000 (13:15 +0000)]
Support for verification of signed receipts.
Geoff Thorpe [Fri, 28 Mar 2008 02:49:43 +0000 (02:49 +0000)]
There was a need to support thread ID types that couldn't be reliably cast
to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed
version was added but it required portable code to check *both* modes to
determine equality. This commit maintains the availability of both thread
ID types, but deprecates the type-specific accessor APIs that invoke the
callbacks - instead a single type-independent API is used. This simplifies
software that calls into this interface, and should also make it less
error-prone - as forgetting to call and compare *both* thread ID accessors
could have led to hard-to-debug/infrequent bugs (that might only affect
certain platforms or thread implementations). As the CHANGES note says,
there were corresponding deprecations and replacements in the
thread-related functions for BN_BLINDING and ERR too.
Geoff Thorpe [Fri, 28 Mar 2008 01:56:08 +0000 (01:56 +0000)]
Update tunala so it builds ok with OPENSSL_NO_DEPRECATED, and improve the
autoungunk.sh logic (autobits have grown since I last tried this...).
Dr. Stephen Henson [Wed, 26 Mar 2008 17:40:22 +0000 (17:40 +0000)]
Add support for signed receipt request printout and generation.
Dr. Stephen Henson [Wed, 26 Mar 2008 13:10:21 +0000 (13:10 +0000)]
Signed Receipt Request utility functions and option on CMS utility to
print out receipt requests.
Dr. Stephen Henson [Mon, 24 Mar 2008 22:14:02 +0000 (22:14 +0000)]
Add signed receipt ASN1 structures. Initial GENERAL_NAME utility functions.
Dr. Stephen Henson [Mon, 24 Mar 2008 21:53:07 +0000 (21:53 +0000)]
Add support for CMS structure printing in cms utility.
Dr. Stephen Henson [Sun, 23 Mar 2008 14:13:45 +0000 (14:13 +0000)]
Fix duplicate asn1 ctrl values.
Dr. Stephen Henson [Sat, 22 Mar 2008 18:52:03 +0000 (18:52 +0000)]
Update dependencies.
Dr. Stephen Henson [Fri, 21 Mar 2008 13:09:26 +0000 (13:09 +0000)]
Preliminary documentation for CMS utility.
Geoff Thorpe [Wed, 19 Mar 2008 23:08:20 +0000 (23:08 +0000)]
Comment out a (currently) unused CMS function. (Sorry Steve, but I need
-Werror right now to help me code-by-domino :-)
Geoff Thorpe [Wed, 19 Mar 2008 23:05:48 +0000 (23:05 +0000)]
Fork my debug configuration into 32-bit and 64-bit versions.
Dr. Stephen Henson [Wed, 19 Mar 2008 19:34:30 +0000 (19:34 +0000)]
Allow alternate eContentType oids to be set in cms utility.
Add id-ct-asciiTextWithCRLF OID.
Give more meaninful error message is attempt to use key ID from a certificate
without a key ID.
Dr. Stephen Henson [Wed, 19 Mar 2008 18:42:02 +0000 (18:42 +0000)]
Rebuild CMS error codes.
Dr. Stephen Henson [Wed, 19 Mar 2008 18:39:51 +0000 (18:39 +0000)]
Add support for KEK decrypt in cms utility.
Dr. Stephen Henson [Wed, 19 Mar 2008 17:01:12 +0000 (17:01 +0000)]
Produce meaningful error if sanity check fails.
Delete trailing whitespace from objects.txt
Delete duplicate NIDs.
Dr. Stephen Henson [Wed, 19 Mar 2008 14:18:36 +0000 (14:18 +0000)]
Additional sanity check.
Dr. Stephen Henson [Wed, 19 Mar 2008 13:53:52 +0000 (13:53 +0000)]
Add support for KEKRecipientInfo in cms application.
Dr. Stephen Henson [Tue, 18 Mar 2008 19:03:03 +0000 (19:03 +0000)]
Make 3DES default cipher in cms utility.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:53:12 +0000 (18:53 +0000)]
Delete standard out and err temp files too.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:51:44 +0000 (18:51 +0000)]
Delete tmp files, silence openssl commands, compare extracted content.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:29:54 +0000 (18:29 +0000)]
Add enveloped data keyid test.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:18:25 +0000 (18:18 +0000)]
Uninitialized variable bug fix.
Dr. Stephen Henson [Tue, 18 Mar 2008 17:33:46 +0000 (17:33 +0000)]
Fixes for S/MIME consistency checker and flexibility enhancements.
Dr. Stephen Henson [Tue, 18 Mar 2008 14:37:59 +0000 (14:37 +0000)]
Add extensive PCKS7 and CMS consistency test script.
Dr. Stephen Henson [Tue, 18 Mar 2008 13:45:43 +0000 (13:45 +0000)]
Various tidies/fixes:
Make streaming support in cms cleaner.
Note errors in various S/MIME functions if CMS_final() fails.
Add streaming support for enveloped data.
Dr. Stephen Henson [Tue, 18 Mar 2008 01:00:38 +0000 (01:00 +0000)]
More support for KEK RecipientInfo.
Generalise RecipientInfo and enveloped data handling so applications can
add their own key lookup routines as well as using the standard ones.
Dr. Stephen Henson [Mon, 17 Mar 2008 18:11:27 +0000 (18:11 +0000)]
Partial support for KEKRecipientInfo type.
Dr. Stephen Henson [Mon, 17 Mar 2008 13:38:51 +0000 (13:38 +0000)]
Preliminary support for enveloped data content type creation.
Fix signed data creation so versions are only corrected if structure is
being created.
Geoff Thorpe [Sun, 16 Mar 2008 21:05:46 +0000 (21:05 +0000)]
Fix a variety of warnings generated by some elevated compiler-fascism,
OPENSSL_NO_DEPRECATED, etc. Steve, please double-check the CMS stuff...
Dr. Stephen Henson [Sun, 16 Mar 2008 20:59:10 +0000 (20:59 +0000)]
Fix some warnings.
Geoff Thorpe [Sun, 16 Mar 2008 20:57:12 +0000 (20:57 +0000)]
Fix a nasty cast issue that my compiler was choking on.
Geoff Thorpe [Sun, 16 Mar 2008 20:49:32 +0000 (20:49 +0000)]
Fix my debug-geoff configuration.
Dr. Stephen Henson [Sun, 16 Mar 2008 19:10:02 +0000 (19:10 +0000)]
Adapt to diffrent OpenSSL utility locations.
Dr. Stephen Henson [Sun, 16 Mar 2008 18:41:20 +0000 (18:41 +0000)]
Remove deleted function from header file, update mkfiles.pl
Dr. Stephen Henson [Sun, 16 Mar 2008 18:31:18 +0000 (18:31 +0000)]
Don't need to check for examples directory any more.
Dr. Stephen Henson [Sun, 16 Mar 2008 18:03:48 +0000 (18:03 +0000)]
Extend runex.pl to extract examples directly from RFC text.
Dr. Stephen Henson [Sun, 16 Mar 2008 13:05:03 +0000 (13:05 +0000)]
Add support for random key generation: this will be needed by enveloped data.
Dr. Stephen Henson [Sat, 15 Mar 2008 23:21:34 +0000 (23:21 +0000)]
Initial support for enveloped data decrypt. Extent runex.pl to cover these
examples. All RFC4134 examples can now be processed.
Dr. Stephen Henson [Sat, 15 Mar 2008 23:21:33 +0000 (23:21 +0000)]
Initial support for enveloped data decrypt. Extent runex.pl to cover these
examples. All RFC4134 examples can not be processed.
Dr. Stephen Henson [Sat, 15 Mar 2008 13:37:32 +0000 (13:37 +0000)]
Check for cipher BIO errors and set key length after parameter decode.
Dr. Stephen Henson [Sat, 15 Mar 2008 00:02:23 +0000 (00:02 +0000)]
Return error if no cipher set for encrypted data type.
Update CHANGES.
Dr. Stephen Henson [Fri, 14 Mar 2008 23:30:56 +0000 (23:30 +0000)]
Initial support for Encrypted Data type generation.
Dr. Stephen Henson [Fri, 14 Mar 2008 19:40:40 +0000 (19:40 +0000)]
Delete temp files.
Dr. Stephen Henson [Fri, 14 Mar 2008 19:38:44 +0000 (19:38 +0000)]
Typos.
Dr. Stephen Henson [Fri, 14 Mar 2008 19:37:56 +0000 (19:37 +0000)]
Reorganise encrypted content info code to avoid duplication and be more
consistent with other content types.
Dr. Stephen Henson [Fri, 14 Mar 2008 13:21:48 +0000 (13:21 +0000)]
Encrypted Data type processing. Add options to cms utility and run section 7
tests in RFC4134.
Dr. Stephen Henson [Fri, 14 Mar 2008 00:58:43 +0000 (00:58 +0000)]
New utility functions for encryptedData content type which will also be used
by envelopedData.
Use PRE and not POST when freeing up RecipientInfo.
Dr. Stephen Henson [Fri, 14 Mar 2008 00:57:01 +0000 (00:57 +0000)]
Only call free once in CHOICE type.
Dr. Stephen Henson [Thu, 13 Mar 2008 01:04:47 +0000 (01:04 +0000)]
RFC4134 S/MIME examples test script.
Dr. Stephen Henson [Thu, 13 Mar 2008 00:50:02 +0000 (00:50 +0000)]
.cvignore file for cms
Dr. Stephen Henson [Thu, 13 Mar 2008 00:48:59 +0000 (00:48 +0000)]
Free up additional data in RecipientInfo structure
Dr. Stephen Henson [Wed, 12 Mar 2008 21:14:28 +0000 (21:14 +0000)]
And so it begins...
Initial support for CMS.
Add zlib compression BIO.
Add AES key wrap implementation.
Generalize S/MIME MIME code to support CMS and/or PKCS7.
Dr. Stephen Henson [Wed, 12 Mar 2008 13:05:07 +0000 (13:05 +0000)]
Update year.
Dr. Stephen Henson [Wed, 12 Mar 2008 00:37:31 +0000 (00:37 +0000)]
#undef X509_EXTENSIONS to avoid conflict with CryptoAPI.
Dr. Stephen Henson [Fri, 29 Feb 2008 14:24:52 +0000 (14:24 +0000)]
We already have an object for "zlib compression" but it was a place
holder and its actual encoding never used.
Just as well because it's value looks like it was made up in the mists of
time...
Now there is a registered value for zlib compression (used in S/MIME
compressedData content type) use that instead.
Dr. Stephen Henson [Thu, 28 Feb 2008 14:05:01 +0000 (14:05 +0000)]
Avoid warnings.
Dr. Stephen Henson [Thu, 28 Feb 2008 13:45:06 +0000 (13:45 +0000)]
Fix error code function name mismatches in GOST engine, rebuild errors.
Dr. Stephen Henson [Thu, 28 Feb 2008 13:18:26 +0000 (13:18 +0000)]
Fix typo and avoid warning.
Andy Polyakov [Wed, 27 Feb 2008 20:09:28 +0000 (20:09 +0000)]
Make x86_64-mont.pl work with debug Win64 build.
Bodo Möller [Wed, 27 Feb 2008 06:01:28 +0000 (06:01 +0000)]
fix BIGNUM flag handling
Dr. Stephen Henson [Mon, 25 Feb 2008 18:11:47 +0000 (18:11 +0000)]
Clarification and fix typo.
Dr. Stephen Henson [Mon, 25 Feb 2008 13:14:06 +0000 (13:14 +0000)]
Use default value for $dir if it is empty.
Bodo Möller [Thu, 21 Feb 2008 07:24:12 +0000 (07:24 +0000)]
Make sure to set indent-tabs-mode so that we get tabs, not spaces.
Andy Polyakov [Wed, 13 Feb 2008 13:07:52 +0000 (13:07 +0000)]
Support for NASM>=2 in Win64/x64 build.