| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| |
|
|
|
|
|
|
| |
If we're given a pointer to an existing stack, free it and allocate a new
one rather than poping and freeing all of the existing entries so we can
reuse it. While here rename some arguments and variables.
ok inoguchi@ tb@
|
| |
|
|
|
|
|
| |
Remove the existing o2i_SCT_signature() function and rename
o2i_SCT_signature_internal() to replace it.
ok inoguchi@ tb@
|
| | |
|
| |
|
|
| |
BN_mod_lshift_quick(3), BN_mod_lshift1(3), and BN_mod_lshift1_quick(3)
|
| |
|
|
| |
but what i have so far is already better than nothing
|
| | |
|
| | |
|
| |
|
|
| |
No functional change.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
While here, add the missing "const" qualifier to the second parameter
of BN_is_word(3) - even though i doubt that marking an integral type
parameter as "const" serves any significant purpose...
Note that the OpenSSL documentation for this function that Billy
Brumley committed on August 4, 2021 is actually wrong. Essentially,
it says "BN_abs_is_word() test[s] if a equals ... |w|." Now pray
tell me, what exactly is the point of taking the absolute value of
an unsigned integer number? To compensate for the obvious absurdity
of his patch, Billy made a point of getting *three* OKs from rather
notable people: Pauli Dale, Nicola Tuveri, and Dmitry Belyavskiy.
I believe this is a striking example of the cavalier attitude some
projects put on display when it comes to documentation, and also a
striking example of how bad documentation can occasionally be worse
than no documentation at all, because the OpenSSL manual page will
now thoroughly confuse anyone reading it.
SCNR pointing out this (hopefully unintentional) hilarity - or is
this an attempt at trolling the readers of their documentation?
If it is, they certainly got me.
|
| | |
|
| |
|
|
| |
fixing a minibug found with check_complete.pl
|
| | |
|
| | |
|
| |
|
|
| |
in OpenSSL commit d2e9e320.
|
| | |
|
| |
|
|
|
|
| |
files in libcrypto/ct. This reverts OpenSSL commit d2e9e320
discussed with jsing
|
| |
|
|
|
|
| |
This provides cleaner and safer code.
ok inoguchi@ tb@
|
| | |
|
| | |
|
| |
|
|
| |
while here, repair a typo in the lh_retrieve(3) synopsis
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
symbols according to the reason (internal, obsolete, postponed)
and according to the header file (asn1, objects, x509, ...).
Also, add some minor tweaks needed for <openssl/objects.h>.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Before the TLSv1.3 stack grew client certificate support, it fell back
to the legacy stack. Proper client certificate support was added in a2k20
with a TLS13_USE_LEGACY_CLIENT_AUTH knob to provide an easy fallback in
case the new code should have a problem. This was never needed.
As ifdefed code is wont to do, this bitrotted a few months later when
the client and server methods were merged.
discussed with jsing
|
| |
|
|
| |
mark OBJ_create_and_add_object() as intentionally undocumented
|
| |
|
|
|
| |
because OBJ_nid2obj(3) is already long and
more functions related to OBJ_create(3) have to be documented.
|
| |
|
|
|
|
|
| |
This will allow us to add a new asn1_lib.c while replacing the code that is
in currently in asn1_old_lib.c.
Discussed with tb@
|
| | |
|
| |
|
|
|
|
|
|
|
| |
Rather than having multiple files per type (with minimal code per file),
use one file per type (a_<type>.c).
No functional change.
Discussed with tb@
|
| |
|
|
| |
ok tb@
|
| | |
|
| | |
|
| |
|
|
|
|
| |
These will be used in libcrypto.
With input from and ok tb@
|
| |
|
|
|
|
| |
This will be used in the libcrypto certificate transparency code.
ok tb@
|
| |
|
|
|
|
|
|
| |
This will be used in the TLSv1.3 record layer.
From BoringSSL.
ok tb@
|
| |
|
|
|
|
| |
related to templating macros) or intentionally undocumented.
Apart from NETSCAPE, PCTX, and low-level templating stuff,
all ASN.1 functions, types, and macros are now documented.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
While it was probably a mistake that steve@ made some i2c_*() and c2i_*()
functions public back in 2000 and while we would like to delete them from
the API, it may not be possible to delete this particular function because
in contrast to the others (which are already marked as intentionally
undocumented), this one is used by various real-world software, so for now,
explain what it does, just in case people find it in existing code.
While here, use the familiar term "byte" that we generally use
throughout all our manual pages, even though the ASN.1 standard
uses the term "octet" instead, which is more precise only in theory.
|
| | |
|
| |
|
|
| |
some regexp tweaks; the relevant parts of asn1.h are nearing completion
|
| | |
|
| |
|
|
| |
that are intentionally undocumented
|
| |
|
|
|
|
|
|
|
|
|
|
| |
There are currently three different tables in three different files that
contain information about ASN.1 universal class tag types. Range checking
is also implemented in three different places (with different
implementations).
Consolidate all of this into a single table, provide a lookup function that
deals with the range checks and wrappers to deal with specific types.
ok inoguchi@ tb@
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
using parts of the text from SMIME_read_CMS(3) and SMIME_read_PKCS7(3)
|
| |
|
|
|
| |
certainly not perfect, but arguably better than the even terser
PEM_write_bio_CMS_stream(3) and PEM_write_bio_PKCS7_stream(3)
|
