summaryrefslogtreecommitdiff
path: root/lib/x509/pkcs12.c
Commit message (Collapse)AuthorAgeFilesLines
* Use https:// in lib/, src/, and m4/Tim Rühsen2019-03-131-1/+1
| | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* Use https:// for www.gnu.org and www.example.comTim Rühsen2019-03-131-1/+1
| | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* Fix typos in lib/tmp-fix-typos-in-libTim Rühsen2019-01-041-1/+1
| | | | Signed-off-by: Tim Rühsen <tim.ruehsen@gmx.de>
* pkcs12: cleanups, and two memory leak fixesNikos Mavrogiannopoulos2018-11-101-10/+8
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* use a consistent method to mark fall-through in switch casesNikos Mavrogiannopoulos2018-08-081-1/+1
| | | | | | | | Also document that method in contribution guide. Resolves #306 Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* Add support for PKCS12 files using GOST MACDmitry Eremin-Solenikov2018-06-231-12/+116
| | | | | | | Local PKCS12-based standard derives from RFC 7292 (PKCS #12) in using PBKDF2 to generate MAC key rather than using PKCS12 scheme. Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
* gnutls_pkcs12_simple_parse: set to null vars after deinitializationtmp-fix-pkcs12-crash2Nikos Mavrogiannopoulos2017-04-301-0/+4
| | | | | | | This avoids having the variables being deinitialized twice during cleanup. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* pkcs12: release CRL data on error pathNikos Mavrogiannopoulos2017-04-281-0/+4
| | | | | | | This addresses issue: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1295 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* pkcs12: eliminate mem leaks in _pkcs12_decode_safe_contentsNikos Mavrogiannopoulos2017-04-251-2/+3
| | | | | | | | This makes sure we deinitialize previously available elements. This addresses: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1173 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* cleanups in _pkcs12_decode_safe_contentsNikos Mavrogiannopoulos2017-04-251-14/+6
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* pkcs12: clean ups in PKCS#12 parsingNikos Mavrogiannopoulos2017-04-251-2/+10
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* Avoid using ASN1_MAX_NAME_SIZE directlyNikos Mavrogiannopoulos2017-04-061-2/+2
| | | | | | | | | Since ASN1_MAX_NAME_SIZE refers to a single element in the asn1 tree, it is not suitable to hold the maximum combined name. Instead use a local definition of MAX_NAME_SIZE, which is a multiple of the ASN1_MAX_NAME_SIZE. Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* PKCS#12: added support for files with zero salt length in MACNikos Mavrogiannopoulos2017-04-041-3/+5
| | | | | | | Resolves #191 Resolves #190 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* doc updateNikos Mavrogiannopoulos2017-03-271-1/+2
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* deprecated _gnutls_rnd() in favor of exported gnutls_rnd()Nikos Mavrogiannopoulos2016-11-041-1/+1
|
* several spacing fixes to keep syntax-check happyNikos Mavrogiannopoulos2016-09-111-2/+2
|
* gnutls_pkcs12_simple_parse: set the key value to null on failureDavid Woodhouse2016-08-291-1/+3
|
* pkcs8: cleaned up PKCS#8 decoding from common code with PKCS#7Nikos Mavrogiannopoulos2016-08-261-0/+1
|
* Added support for decrypting PKCS#8 files which use HMAC-SHA256 as PRFNikos Mavrogiannopoulos2016-08-241-2/+2
| | | | This improves compatibility with new openssl versions.
* Fix gnutls_pkcs12_simple_parse to always extract the complete chainstefan-fixesStefan Sørensen2016-08-081-20/+15
| | | | | | | | | gnutls_pkcs12_simple_parse was only collecting extra certificates that was possible elements of the certificate chain when the extra_certs argument was not NULL. Fix by allways collecting all the certificates, any unneeded certificates are released before returning if extra_certs is NULL anyway. Signed-off-by: Stefan Sørensen <stefan.sorensen@spectralink.com>
* several sign-related API changesNikos Mavrogiannopoulos2016-05-311-2/+3
| | | | | | | | | | This replaces the usage of "int" in functions which could only have accepted an "unsigned" value. Also functions which return unsigned values are explicitly tagged as such. The ABI remains the same with these changes. This allows easier catching of sign/unsigned related errors from the calling applications.
* pkcs12: correctly set salt size in gnutls_pkcs12_mac_infoNikos Mavrogiannopoulos2015-11-091-3/+4
| | | | Also eliminate leaks in PKCS #12 parsing.
* Removed the 'gnutls_' prefix from files to simplify file namingNikos Mavrogiannopoulos2015-08-231-5/+5
|
* doc: avoid using structure for opaque typesNikos Mavrogiannopoulos2015-03-201-14/+14
|
* use asn1_decode_simple_ber if availableNikos Mavrogiannopoulos2015-03-041-4/+4
|
* gnutls_pkcs12_simple_parse: doc updateNikos Mavrogiannopoulos2014-12-121-1/+1
|
* Fix double-free in gnutls_pkcs12_simple_parse()Chen Hongzhi2014-11-051-2/+0
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
* fixed compilation warningsNikos Mavrogiannopoulos2014-09-251-7/+3
|
* Re-initialize the ASN.1 structures on every importNikos Mavrogiannopoulos2014-08-171-5/+30
| | | | | That allows to import a key/certificate on a structure even if the previous import failed.
* pkcs12: added check for null OID in gnutls_pkcs12_generate_mac2Nikos Mavrogiannopoulos2014-08-111-4/+5
|
* pkcs12: added gnutls_pkcs12_generate_mac2()Nikos Mavrogiannopoulos2014-08-101-13/+32
| | | | That allows a choice on the MAC algorithm to be used.
* pkcs12: added gnutls_pkcs12_mac_info to obtain information on the MACNikos Mavrogiannopoulos2014-08-101-0/+101
|
* pkcs12: Allow verification with structures that support other than HMAC-SHA1 ↵Nikos Mavrogiannopoulos2014-08-101-16/+41
| | | | MACs.
* updated doc for gnutls_pkcs12_simple_parse()Nikos Mavrogiannopoulos2014-08-101-5/+8
|
* pkcs12: increased the number of iterations for MACNikos Mavrogiannopoulos2014-08-041-1/+1
|
* updated documentation for gnutls_pkcs12_simple_parseNikos Mavrogiannopoulos2014-07-291-16/+12
|
* several bug fixes due to coverity.Nikos Mavrogiannopoulos2014-04-151-0/+1
|
* reindented codeNikos Mavrogiannopoulos2013-11-081-1545/+1457
|
* simplified access to cipher and mac properties to reduce wasted cycles.Nikos Mavrogiannopoulos2013-05-251-2/+4
|
* doc updatesNikos Mavrogiannopoulos2013-04-081-7/+7
|
* The HMAC subsystem can now be used for other MAC algorithms, like UMAC. ↵Nikos Mavrogiannopoulos2013-03-191-8/+8
| | | | UMAC-96 and UMAC-128 were conditionally added.
* Use gnutls_realloc_fast everywhere. Suggested by David Woodhouse.Nikos Mavrogiannopoulos2013-02-181-2/+2
|
* Use LGPLv2.1 in the files their author's agreed to.Nikos Mavrogiannopoulos2013-02-011-1/+1
|
* doc fixNikos Mavrogiannopoulos2013-01-051-5/+5
|
* Added correct sinceNikos Mavrogiannopoulos2013-01-051-1/+1
|
* corrected copyright noticesNikos Mavrogiannopoulos2012-12-061-0/+1
|
* Import PKCS #12 keysNikos Mavrogiannopoulos2012-12-061-17/+23
|
* rewritten ASN.1 handling string subsystems to use the new libtasn1 APIs.Nikos Mavrogiannopoulos2012-11-241-26/+8
|
* doc updateNikos Mavrogiannopoulos2012-11-191-1/+1
|
* Added functions to parse the certificate policies extention.Nikos Mavrogiannopoulos2012-11-181-18/+19
| | | | | Added gnutls_x509_crt_get_policy() etc. In addition several updated in the handling of strings in X.509 structures.
View Lorry Controller Status