oweals/openssl.git
16 years agoIgnore nonsensical flags for signed receipts.
Dr. Stephen Henson [Thu, 10 Apr 2008 11:12:42 +0000 (11:12 +0000)]
Ignore nonsensical flags for signed receipts.

16 years agoAdd CMS signed receipt genration and verification docs.
Dr. Stephen Henson [Thu, 10 Apr 2008 11:00:47 +0000 (11:00 +0000)]
Add CMS signed receipt genration and verification docs.

16 years agoSpellcheck CMS docs.
Dr. Stephen Henson [Thu, 10 Apr 2008 10:46:11 +0000 (10:46 +0000)]
Spellcheck CMS docs.

16 years agoSigned receipt request function documentation.
Dr. Stephen Henson [Wed, 9 Apr 2008 23:13:49 +0000 (23:13 +0000)]
Signed receipt request function documentation.

16 years agoCorrect references to smime in cms app.
Dr. Stephen Henson [Wed, 9 Apr 2008 22:09:45 +0000 (22:09 +0000)]
Correct references to smime in cms app.

16 years agoUpdate docs.
Dr. Stephen Henson [Wed, 9 Apr 2008 20:59:45 +0000 (20:59 +0000)]
Update docs.

16 years agoAdd CMS_uncompress manual page.
Dr. Stephen Henson [Wed, 9 Apr 2008 20:55:55 +0000 (20:55 +0000)]
Add CMS_uncompress manual page.

16 years agoAdd CMS_compress() docs.
Dr. Stephen Henson [Wed, 9 Apr 2008 17:04:36 +0000 (17:04 +0000)]
Add CMS_compress() docs.

16 years agoMore CMS API documentation.
Dr. Stephen Henson [Wed, 9 Apr 2008 16:08:16 +0000 (16:08 +0000)]
More CMS API documentation.

16 years agoClarifying comment.
Andy Polyakov [Wed, 9 Apr 2008 12:06:42 +0000 (12:06 +0000)]
Clarifying comment.

16 years agoDo BN_nist_mod_384 by the book, as cheating doesn't work. Other functions
Andy Polyakov [Wed, 9 Apr 2008 11:36:04 +0000 (11:36 +0000)]
Do BN_nist_mod_384 by the book, as cheating doesn't work. Other functions
will be revised too.
PR: 1593

16 years agoFix various typos, update SMIMECapabilities description.
Dr. Stephen Henson [Tue, 8 Apr 2008 22:44:56 +0000 (22:44 +0000)]
Fix various typos, update SMIMECapabilities description.

16 years agoCorrect d2i/i2d typos.
Dr. Stephen Henson [Tue, 8 Apr 2008 22:35:32 +0000 (22:35 +0000)]
Correct d2i/i2d typos.

16 years agoInitial CMS API documentation.
Dr. Stephen Henson [Tue, 8 Apr 2008 22:27:10 +0000 (22:27 +0000)]
Initial CMS API documentation.

16 years agoImplement CMS_NOCRL.
Dr. Stephen Henson [Mon, 7 Apr 2008 11:00:44 +0000 (11:00 +0000)]
Implement CMS_NOCRL.

16 years agoFix URI of OpenSSL Request Tracker information
Lutz Jänicke [Mon, 7 Apr 2008 06:37:05 +0000 (06:37 +0000)]
Fix URI of OpenSSL Request Tracker information
PR: 1661

16 years agoSet contentType attribute just before signing to allow encapsulated content
Dr. Stephen Henson [Sun, 6 Apr 2008 16:29:47 +0000 (16:29 +0000)]
Set contentType attribute just before signing to allow encapsulated content
type to be set at any time in applications.

16 years agoFix typo and add header files to err library.
Dr. Stephen Henson [Sun, 6 Apr 2008 15:53:29 +0000 (15:53 +0000)]
Fix typo and add header files to err library.

16 years agoGive consistent return value and add error code for duplicate certificates.
Dr. Stephen Henson [Sun, 6 Apr 2008 15:41:25 +0000 (15:41 +0000)]
Give consistent return value and add error code for duplicate certificates.

16 years agoDelete nonexistant function from pkcs7.h header file. WIN32 build fix from
Dr. Stephen Henson [Fri, 4 Apr 2008 00:06:43 +0000 (00:06 +0000)]
Delete nonexistant function from pkcs7.h header file. WIN32 build fix from
stable branch. Sync and update ordinals.

16 years agoMake mk1mf.pl recognize no-cms.
Dr. Stephen Henson [Thu, 3 Apr 2008 23:29:15 +0000 (23:29 +0000)]
Make mk1mf.pl recognize no-cms.

16 years agoRename runex.pl to cms-examples.pl
Dr. Stephen Henson [Thu, 3 Apr 2008 23:25:43 +0000 (23:25 +0000)]
Rename runex.pl to cms-examples.pl

16 years agoUpdate CHANGES.
Dr. Stephen Henson [Wed, 2 Apr 2008 11:44:00 +0000 (11:44 +0000)]
Update CHANGES.

16 years agoUpdate CHANGES.
Dr. Stephen Henson [Wed, 2 Apr 2008 11:24:22 +0000 (11:24 +0000)]
Update CHANGES.

16 years agoSince OID NIDs with 0.9.8.
Dr. Stephen Henson [Wed, 2 Apr 2008 10:48:34 +0000 (10:48 +0000)]
Since OID NIDs with 0.9.8.

16 years agoAvoid warnings.
Dr. Stephen Henson [Tue, 1 Apr 2008 16:29:42 +0000 (16:29 +0000)]
Avoid warnings.

16 years agoAdd signed receipt tests.
Dr. Stephen Henson [Tue, 1 Apr 2008 15:16:15 +0000 (15:16 +0000)]
Add signed receipt tests.

16 years agoFix fast reduction on NIST curves (as well BN_NIST_ADD_ONE macro).
Andy Polyakov [Tue, 1 Apr 2008 08:39:08 +0000 (08:39 +0000)]
Fix fast reduction on NIST curves (as well BN_NIST_ADD_ONE macro).
PR: 1593

16 years agoFix it properly this time....
Dr. Stephen Henson [Mon, 31 Mar 2008 18:21:30 +0000 (18:21 +0000)]
Fix it properly this time....

16 years agoFix macro.
Dr. Stephen Henson [Mon, 31 Mar 2008 18:14:10 +0000 (18:14 +0000)]
Fix macro.

16 years agoUse correct headers for signed receipts. Use consistent naming.
Dr. Stephen Henson [Mon, 31 Mar 2008 15:03:55 +0000 (15:03 +0000)]
Use correct headers for signed receipts. Use consistent naming.

Update cms-test.pl to support OpenSSL 0.9.8.

16 years agoUpdate dependencies.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:11:25 +0000 (21:11 +0000)]
Update dependencies.

16 years agoRemove unnecessary header.
Dr. Stephen Henson [Sat, 29 Mar 2008 21:08:37 +0000 (21:08 +0000)]
Remove unnecessary header.

16 years agoUpdate docs.
Dr. Stephen Henson [Sat, 29 Mar 2008 00:54:24 +0000 (00:54 +0000)]
Update docs.

16 years agoSigned receipt generation code.
Dr. Stephen Henson [Fri, 28 Mar 2008 19:43:16 +0000 (19:43 +0000)]
Signed receipt generation code.

16 years agoSupport for verification of signed receipts.
Dr. Stephen Henson [Fri, 28 Mar 2008 13:15:39 +0000 (13:15 +0000)]
Support for verification of signed receipts.

16 years agoThere was a need to support thread ID types that couldn't be reliably cast
Geoff Thorpe [Fri, 28 Mar 2008 02:49:43 +0000 (02:49 +0000)]
There was a need to support thread ID types that couldn't be reliably cast
to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed
version was added but it required portable code to check *both* modes to
determine equality. This commit maintains the availability of both thread
ID types, but deprecates the type-specific accessor APIs that invoke the
callbacks - instead a single type-independent API is used.  This simplifies
software that calls into this interface, and should also make it less
error-prone - as forgetting to call and compare *both* thread ID accessors
could have led to hard-to-debug/infrequent bugs (that might only affect
certain platforms or thread implementations). As the CHANGES note says,
there were corresponding deprecations and replacements in the
thread-related functions for BN_BLINDING and ERR too.

16 years agoUpdate tunala so it builds ok with OPENSSL_NO_DEPRECATED, and improve the
Geoff Thorpe [Fri, 28 Mar 2008 01:56:08 +0000 (01:56 +0000)]
Update tunala so it builds ok with OPENSSL_NO_DEPRECATED, and improve the
autoungunk.sh logic (autobits have grown since I last tried this...).

16 years agoAdd support for signed receipt request printout and generation.
Dr. Stephen Henson [Wed, 26 Mar 2008 17:40:22 +0000 (17:40 +0000)]
Add support for signed receipt request printout and generation.

16 years agoSigned Receipt Request utility functions and option on CMS utility to
Dr. Stephen Henson [Wed, 26 Mar 2008 13:10:21 +0000 (13:10 +0000)]
Signed Receipt Request utility functions and option on CMS utility to
print out receipt requests.

16 years agoAdd signed receipt ASN1 structures. Initial GENERAL_NAME utility functions.
Dr. Stephen Henson [Mon, 24 Mar 2008 22:14:02 +0000 (22:14 +0000)]
Add signed receipt ASN1 structures. Initial GENERAL_NAME utility functions.

16 years agoAdd support for CMS structure printing in cms utility.
Dr. Stephen Henson [Mon, 24 Mar 2008 21:53:07 +0000 (21:53 +0000)]
Add support for CMS structure printing in cms utility.

16 years agoFix duplicate asn1 ctrl values.
Dr. Stephen Henson [Sun, 23 Mar 2008 14:13:45 +0000 (14:13 +0000)]
Fix duplicate asn1 ctrl values.

16 years agoUpdate dependencies.
Dr. Stephen Henson [Sat, 22 Mar 2008 18:52:03 +0000 (18:52 +0000)]
Update dependencies.

16 years agoPreliminary documentation for CMS utility.
Dr. Stephen Henson [Fri, 21 Mar 2008 13:09:26 +0000 (13:09 +0000)]
Preliminary documentation for CMS utility.

16 years agoComment out a (currently) unused CMS function. (Sorry Steve, but I need
Geoff Thorpe [Wed, 19 Mar 2008 23:08:20 +0000 (23:08 +0000)]
Comment out a (currently) unused CMS function. (Sorry Steve, but I need
-Werror right now to help me code-by-domino :-)

16 years agoFork my debug configuration into 32-bit and 64-bit versions.
Geoff Thorpe [Wed, 19 Mar 2008 23:05:48 +0000 (23:05 +0000)]
Fork my debug configuration into 32-bit and 64-bit versions.

16 years agoAllow alternate eContentType oids to be set in cms utility.
Dr. Stephen Henson [Wed, 19 Mar 2008 19:34:30 +0000 (19:34 +0000)]
Allow alternate eContentType oids to be set in cms utility.

Add id-ct-asciiTextWithCRLF OID.

Give more meaninful error message is attempt to use key ID from a certificate
without a key ID.

16 years agoRebuild CMS error codes.
Dr. Stephen Henson [Wed, 19 Mar 2008 18:42:02 +0000 (18:42 +0000)]
Rebuild CMS error codes.

16 years agoAdd support for KEK decrypt in cms utility.
Dr. Stephen Henson [Wed, 19 Mar 2008 18:39:51 +0000 (18:39 +0000)]
Add support for KEK decrypt in cms utility.

16 years agoProduce meaningful error if sanity check fails.
Dr. Stephen Henson [Wed, 19 Mar 2008 17:01:12 +0000 (17:01 +0000)]
Produce meaningful error if sanity check fails.

Delete trailing whitespace from objects.txt

Delete duplicate NIDs.

16 years agoAdditional sanity check.
Dr. Stephen Henson [Wed, 19 Mar 2008 14:18:36 +0000 (14:18 +0000)]
Additional sanity check.

16 years agoAdd support for KEKRecipientInfo in cms application.
Dr. Stephen Henson [Wed, 19 Mar 2008 13:53:52 +0000 (13:53 +0000)]
Add support for KEKRecipientInfo in cms application.

16 years agoMake 3DES default cipher in cms utility.
Dr. Stephen Henson [Tue, 18 Mar 2008 19:03:03 +0000 (19:03 +0000)]
Make 3DES default cipher in cms utility.

16 years agoDelete standard out and err temp files too.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:53:12 +0000 (18:53 +0000)]
Delete standard out and err temp files too.

16 years agoDelete tmp files, silence openssl commands, compare extracted content.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:51:44 +0000 (18:51 +0000)]
Delete tmp files, silence openssl commands, compare extracted content.

16 years agoAdd enveloped data keyid test.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:29:54 +0000 (18:29 +0000)]
Add enveloped data keyid test.

16 years agoUninitialized variable bug fix.
Dr. Stephen Henson [Tue, 18 Mar 2008 18:18:25 +0000 (18:18 +0000)]
Uninitialized variable bug fix.

16 years agoFixes for S/MIME consistency checker and flexibility enhancements.
Dr. Stephen Henson [Tue, 18 Mar 2008 17:33:46 +0000 (17:33 +0000)]
Fixes for S/MIME consistency checker and flexibility enhancements.

16 years agoAdd extensive PCKS7 and CMS consistency test script.
Dr. Stephen Henson [Tue, 18 Mar 2008 14:37:59 +0000 (14:37 +0000)]
Add extensive PCKS7 and CMS consistency test script.

16 years agoVarious tidies/fixes:
Dr. Stephen Henson [Tue, 18 Mar 2008 13:45:43 +0000 (13:45 +0000)]
Various tidies/fixes:

Make streaming support in cms cleaner.

Note errors in various S/MIME functions if CMS_final() fails.

Add streaming support for enveloped data.

16 years agoMore support for KEK RecipientInfo.
Dr. Stephen Henson [Tue, 18 Mar 2008 01:00:38 +0000 (01:00 +0000)]
More support for KEK RecipientInfo.

Generalise RecipientInfo and enveloped data handling so applications can
add their own key lookup routines as well as using the standard ones.

16 years agoPartial support for KEKRecipientInfo type.
Dr. Stephen Henson [Mon, 17 Mar 2008 18:11:27 +0000 (18:11 +0000)]
Partial support for KEKRecipientInfo type.

16 years agoPreliminary support for enveloped data content type creation.
Dr. Stephen Henson [Mon, 17 Mar 2008 13:38:51 +0000 (13:38 +0000)]
Preliminary support for enveloped data content type creation.

Fix signed data creation so versions are only corrected if structure is
being created.

16 years agoFix a variety of warnings generated by some elevated compiler-fascism,
Geoff Thorpe [Sun, 16 Mar 2008 21:05:46 +0000 (21:05 +0000)]
Fix a variety of warnings generated by some elevated compiler-fascism,
OPENSSL_NO_DEPRECATED, etc. Steve, please double-check the CMS stuff...

16 years agoFix some warnings.
Dr. Stephen Henson [Sun, 16 Mar 2008 20:59:10 +0000 (20:59 +0000)]
Fix some warnings.

16 years agoFix a nasty cast issue that my compiler was choking on.
Geoff Thorpe [Sun, 16 Mar 2008 20:57:12 +0000 (20:57 +0000)]
Fix a nasty cast issue that my compiler was choking on.

16 years agoFix my debug-geoff configuration.
Geoff Thorpe [Sun, 16 Mar 2008 20:49:32 +0000 (20:49 +0000)]
Fix my debug-geoff configuration.

16 years agoAdapt to diffrent OpenSSL utility locations.
Dr. Stephen Henson [Sun, 16 Mar 2008 19:10:02 +0000 (19:10 +0000)]
Adapt to diffrent OpenSSL utility locations.

16 years agoRemove deleted function from header file, update mkfiles.pl
Dr. Stephen Henson [Sun, 16 Mar 2008 18:41:20 +0000 (18:41 +0000)]
Remove deleted function from header file, update mkfiles.pl

16 years agoDon't need to check for examples directory any more.
Dr. Stephen Henson [Sun, 16 Mar 2008 18:31:18 +0000 (18:31 +0000)]
Don't need to check for examples directory any more.

16 years agoExtend runex.pl to extract examples directly from RFC text.
Dr. Stephen Henson [Sun, 16 Mar 2008 18:03:48 +0000 (18:03 +0000)]
Extend runex.pl to extract examples directly from RFC text.

16 years agoAdd support for random key generation: this will be needed by enveloped data.
Dr. Stephen Henson [Sun, 16 Mar 2008 13:05:03 +0000 (13:05 +0000)]
Add support for random key generation: this will be needed by enveloped data.

16 years agoInitial support for enveloped data decrypt. Extent runex.pl to cover these
Dr. Stephen Henson [Sat, 15 Mar 2008 23:21:34 +0000 (23:21 +0000)]
Initial support for enveloped data decrypt. Extent runex.pl to cover these
examples. All RFC4134 examples can now be processed.

16 years agoInitial support for enveloped data decrypt. Extent runex.pl to cover these
Dr. Stephen Henson [Sat, 15 Mar 2008 23:21:33 +0000 (23:21 +0000)]
Initial support for enveloped data decrypt. Extent runex.pl to cover these
examples. All RFC4134 examples can not be processed.

16 years agoCheck for cipher BIO errors and set key length after parameter decode.
Dr. Stephen Henson [Sat, 15 Mar 2008 13:37:32 +0000 (13:37 +0000)]
Check for cipher BIO errors and set key length after parameter decode.

16 years agoReturn error if no cipher set for encrypted data type.
Dr. Stephen Henson [Sat, 15 Mar 2008 00:02:23 +0000 (00:02 +0000)]
Return error if no cipher set for encrypted data type.

Update CHANGES.

16 years agoInitial support for Encrypted Data type generation.
Dr. Stephen Henson [Fri, 14 Mar 2008 23:30:56 +0000 (23:30 +0000)]
Initial support for Encrypted Data type generation.

16 years agoDelete temp files.
Dr. Stephen Henson [Fri, 14 Mar 2008 19:40:40 +0000 (19:40 +0000)]
Delete temp files.

16 years agoTypos.
Dr. Stephen Henson [Fri, 14 Mar 2008 19:38:44 +0000 (19:38 +0000)]
Typos.

16 years agoReorganise encrypted content info code to avoid duplication and be more
Dr. Stephen Henson [Fri, 14 Mar 2008 19:37:56 +0000 (19:37 +0000)]
Reorganise encrypted content info code to avoid duplication and be more
consistent with other content types.

16 years agoEncrypted Data type processing. Add options to cms utility and run section 7
Dr. Stephen Henson [Fri, 14 Mar 2008 13:21:48 +0000 (13:21 +0000)]
Encrypted Data type processing. Add options to cms utility and run section 7
tests in RFC4134.

16 years agoNew utility functions for encryptedData content type which will also be used
Dr. Stephen Henson [Fri, 14 Mar 2008 00:58:43 +0000 (00:58 +0000)]
New utility functions for encryptedData content type which will also be used
by envelopedData.

Use PRE and not POST when freeing up RecipientInfo.

16 years agoOnly call free once in CHOICE type.
Dr. Stephen Henson [Fri, 14 Mar 2008 00:57:01 +0000 (00:57 +0000)]
Only call free once in CHOICE type.

16 years agoRFC4134 S/MIME examples test script.
Dr. Stephen Henson [Thu, 13 Mar 2008 01:04:47 +0000 (01:04 +0000)]
RFC4134 S/MIME examples test script.

16 years ago.cvignore file for cms
Dr. Stephen Henson [Thu, 13 Mar 2008 00:50:02 +0000 (00:50 +0000)]
.cvignore file for cms

16 years agoFree up additional data in RecipientInfo structure
Dr. Stephen Henson [Thu, 13 Mar 2008 00:48:59 +0000 (00:48 +0000)]
Free up additional data in RecipientInfo structure

16 years agoAnd so it begins...
Dr. Stephen Henson [Wed, 12 Mar 2008 21:14:28 +0000 (21:14 +0000)]
And so it begins...

Initial support for CMS.

Add zlib compression BIO.

Add AES key wrap implementation.

Generalize S/MIME MIME code to support CMS and/or PKCS7.

16 years agoUpdate year.
Dr. Stephen Henson [Wed, 12 Mar 2008 13:05:07 +0000 (13:05 +0000)]
Update year.

16 years ago#undef X509_EXTENSIONS to avoid conflict with CryptoAPI.
Dr. Stephen Henson [Wed, 12 Mar 2008 00:37:31 +0000 (00:37 +0000)]
#undef X509_EXTENSIONS to avoid conflict with CryptoAPI.

16 years agoWe already have an object for "zlib compression" but it was a place
Dr. Stephen Henson [Fri, 29 Feb 2008 14:24:52 +0000 (14:24 +0000)]
We already have an object for "zlib compression" but it was a place
holder and its actual encoding never used.

Just as well because it's value looks like it was made up in the mists of
time...

Now there is a registered value for zlib compression (used in S/MIME
compressedData content type) use that instead.

16 years agoAvoid warnings.
Dr. Stephen Henson [Thu, 28 Feb 2008 14:05:01 +0000 (14:05 +0000)]
Avoid warnings.

16 years agoFix error code function name mismatches in GOST engine, rebuild errors.
Dr. Stephen Henson [Thu, 28 Feb 2008 13:45:06 +0000 (13:45 +0000)]
Fix error code function name mismatches in GOST engine, rebuild errors.

16 years agoFix typo and avoid warning.
Dr. Stephen Henson [Thu, 28 Feb 2008 13:18:26 +0000 (13:18 +0000)]
Fix typo and avoid warning.

16 years agoMake x86_64-mont.pl work with debug Win64 build.
Andy Polyakov [Wed, 27 Feb 2008 20:09:28 +0000 (20:09 +0000)]
Make x86_64-mont.pl work with debug Win64 build.

16 years agofix BIGNUM flag handling
Bodo Möller [Wed, 27 Feb 2008 06:01:28 +0000 (06:01 +0000)]
fix BIGNUM flag handling

16 years agoClarification and fix typo.
Dr. Stephen Henson [Mon, 25 Feb 2008 18:11:47 +0000 (18:11 +0000)]
Clarification and fix typo.

16 years agoUse default value for $dir if it is empty.
Dr. Stephen Henson [Mon, 25 Feb 2008 13:14:06 +0000 (13:14 +0000)]
Use default value for $dir if it is empty.

16 years agoMake sure to set indent-tabs-mode so that we get tabs, not spaces.
Bodo Möller [Thu, 21 Feb 2008 07:24:12 +0000 (07:24 +0000)]
Make sure to set indent-tabs-mode so that we get tabs, not spaces.

16 years agoSupport for NASM>=2 in Win64/x64 build.
Andy Polyakov [Wed, 13 Feb 2008 13:07:52 +0000 (13:07 +0000)]
Support for NASM>=2 in Win64/x64 build.