Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								369d2eb2a2 
								
							 
						 
						
							
							
								
								Introduced x509_crt_init(), x509_crl_init() and x509_csr_init()  
							
							
							
						 
						
							2013-09-18 12:01:43 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								86d0c1949e 
								
							 
						 
						
							
							
								
								Generalized function names of x509 functions not parse-specific  
							
							... 
							
							
							
							x509parse_serial_gets -> x509_serial_gets
x509parse_dn_gets -> x509_dn_gets
x509parse_time_expired -> x509_time_expired 
							
						 
						
							2013-09-18 12:01:42 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								7c6b2c320e 
								
							 
						 
						
							
							
								
								Split up X509 files into smaller modules  
							
							
							
						 
						
							2013-09-16 21:41:54 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								428b9ba3b7 
								
							 
						 
						
							
							
								
								Moved POLARSSL_FS_IO check to .function from .data  
							
							
							
						 
						
							2013-09-15 15:20:37 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								1a7550ac67 
								
							 
						 
						
							
							
								
								Moved PK key parsing from X509 module to PK module  
							
							
							
						 
						
							2013-09-15 13:47:30 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								df0142bd17 
								
							 
						 
						
							
							
								
								Fix some dependencies in tests  
							
							
							
						 
						
							2013-08-27 22:21:21 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								3fb5c5ee1c 
								
							 
						 
						
							
							
								
								PK: rename members for consistency CIPHER, MD  
							
							... 
							
							
							
							Also add pk_get_name() to remove a direct access to pk_type 
							
						 
						
							2013-08-20 20:46:04 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								c6ac8870d5 
								
							 
						 
						
							
							
								
								Nicer interface between PK and debug.  
							
							... 
							
							
							
							Finally get rid of pk_context.type member, too. 
							
						 
						
							2013-08-20 20:46:04 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								33b43f1ec3 
								
							 
						 
						
							
							
								
								Converted .function file to c-like format and adapted generator code  
							
							
							
						 
						
							2013-08-20 11:48:36 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								dbd443dca6 
								
							 
						 
						
							
							
								
								Adapted .function files and .data files to new test framework  
							
							... 
							
							
							
							Changes include:
 - Integers marked with '#' in the .function files.
 - Strings should have "" in .data files.
 - String comparison instead of preprocessor-like replace for e.g. '=='
 - Params and variables cannot have the same name in .function files 
							
						 
						
							2013-08-16 13:51:37 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								de44a4aecf 
								
							 
						 
						
							
							
								
								Rename ecp_check_prvkey with a 'i' for consistency  
							
							
							
						 
						
							2013-07-09 16:42:34 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								8838099330 
								
							 
						 
						
							
							
								
								Add x509parse_{,public}_key{,file}()  
							
							... 
							
							
							
							Also make previously public *_ec functions private. 
							
						 
						
							2013-07-08 17:32:27 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								2b9252cd8f 
								
							 
						 
						
							
							
								
								Add tests for x509parse_key_ec()  
							
							... 
							
							
							
							Test files were generated as follows:
openssl ecparam -name prime192v1 -genkey > key.pem
openssl ec -in key.pem -pubout -outform PEM > pub.pem
openssl ec -in key.pem -pubout -outform DER > pub.der
openssl ec -in key.pem -outform pem > prv.sec1.pem
openssl ec -in key.pem -outform der > prv.sec1.der
openssl ec -in key.pem -des -passout pass:polar -outform pem > prv.sec1.pw.pem
openssl pkcs8 -topk8 -in key.pem -nocrypt -outform pem > prv.pk8.pem
openssl pkcs8 -topk8 -in key.pem -nocrypt -outform der > prv.pk8.der
openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform der \
    > prv.pk8.pw.der
openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform pem \
    > prv.pk8.pw.pem 
							
						 
						
							2013-07-08 17:32:26 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								1bc6931f8c 
								
							 
						 
						
							
							
								
								Add test for x509parse_public_keyfile_ec  
							
							
							
						 
						
							2013-07-08 15:31:19 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Manuel Pégourié-Gonnard 
							
						 
						
							
							
							
							
								
							
							
								ba4878aa64 
								
							 
						 
						
							
							
								
								Rename x509parse_key & co with _rsa suffix  
							
							
							
						 
						
							2013-07-08 15:31:18 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								c70b982056 
								
							 
						 
						
							
							
								
								OID functionality moved to a separate module.  
							
							... 
							
							
							
							A new OID module has been created that contains the main OID searching
functionality based on type-dependent arrays. A base type is used to
contain the basic values (oid_descriptor_t) and that type is extended to
contain type specific information (like a pk_alg_t).
As a result the rsa sign and verify function prototypes have changed. They
now expect a md_type_t identifier instead of the removed RSA_SIG_XXX
defines.
All OID definitions have been moved to oid.h
All OID matching code is in the OID module.
The RSA PKCS#1 functions cleaned up as a result and adapted to use the
MD layer.
The SSL layer cleanup up as a result and adapted to use the MD layer.
The X509 parser cleaned up and matches OIDs in certificates with new
module and adapted to use the MD layer.
The X509 writer cleaned up and adapted to use the MD layer.
Apps and tests modified accordingly 
							
						 
						
							2013-04-07 22:00:46 +02:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								915275ba78 
								
							 
						 
						
							
							
								
								- Revamped x509_verify() and the SSL f_vrfy callback implementations  
							
							
							
						 
						
							2012-09-28 07:10:55 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								b08e6843c2 
								
							 
						 
						
							
							
								
								- Removed test memory leaks  
							
							
							
						 
						
							2012-02-11 18:43:20 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								69e095cc15 
								
							 
						 
						
							
							
								
								- Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it.  
							
							... 
							
							
							
							- As a consequence all error code that were positive were changed. A lot of MALLOC_FAILED and FILE_IO_ERROR error codes added for different modules.
 - Programs and tests were adapted accordingly 
							
						 
						
							2011-12-10 21:55:01 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								6c0ceb3f9a 
								
							 
						 
						
							
							
								
								-  Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error  
							
							
							
						 
						
							2011-12-04 12:24:18 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								eaf90d9a9c 
								
							 
						 
						
							
							
								
								- Removed unused but initialized variables  
							
							
							
						 
						
							2011-07-13 14:21:52 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								36f1b197ca 
								
							 
						 
						
							
							
								
								- Added test for PKCS#8 wrapped private and public keys  
							
							
							
						 
						
							2011-07-13 11:32:29 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								5690efccc4 
								
							 
						 
						
							
							
								
								- Fixed a whole bunch of dependencies on defines between files, examples and tests  
							
							
							
						 
						
							2011-05-26 13:16:06 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								579923c51b 
								
							 
						 
						
							
							
								
								- The config header file is now always included in all tests  
							
							
							
						 
						
							2011-03-26 13:39:34 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								96743fc5f5 
								
							 
						 
						
							
							
								
								- Parsing of PEM files moved to separate module (Fixes ticket  #13 ). Also possible to remove PEM support for systems only using DER encoding  
							
							... 
							
							
							
							- Parsing PEM private keys encrypted with DES and AES are now supported (Fixes ticket #5 )
 - Added tests for encrypted keyfiles 
							
						 
						
							2011-02-12 14:30:57 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								5a62408629 
								
							 
						 
						
							
							
								
								- Fixed compiler warnings  
							
							
							
						 
						
							2011-01-18 16:31:52 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								b63b0afc05 
								
							 
						 
						
							
							
								
								- Added verification callback in certificate verification chain in order to allow external blacklisting  
							
							
							
						 
						
							2011-01-13 17:54:59 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								6b0fa4f33b 
								
							 
						 
						
							
							
								
								- Added extra regression and coverage tests for ASN parsing of CRL and Key data  
							
							
							
						 
						
							2009-07-20 20:35:41 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								c26a189189 
								
							 
						 
						
							
							
								
								- Added extra X509 regression and coverage tests  
							
							
							
						 
						
							2009-07-19 20:30:14 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								b2c38f54b4 
								
							 
						 
						
							
							
								
								- Added a lot of ASN1 Certificate parsing tests  
							
							
							
						 
						
							2009-07-19 19:36:15 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								69998dd2c8 
								
							 
						 
						
							
							
								
								- Made code compliant with ISO99 (no-declaration-after-statement)  
							
							
							
						 
						
							2009-07-11 19:15:20 +00:00 
							
								 
							
						 
					 
				
					
						
							
							
								Paul Bakker 
							
						 
						
							
							
							
							
								
							
							
								37940d9ff6 
								
							 
						 
						
							
							
								
								- Added test coverage for X509parse  
							
							... 
							
							
							
							- Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test 
							
						 
						
							2009-07-10 22:38:58 +00:00