summaryrefslogtreecommitdiffstats
path: root/crypto/cms
AgeCommit message (Collapse)Author
2012-06-08Reduce version skew.Ben Laurie
2012-05-10Reported by: Solar Designer of OpenwallDr. Stephen Henson
Make sure tkeylen is initialised properly when encrypting CMS messages.
2012-03-12Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key andDr. Stephen Henson
continue with symmetric decryption process to avoid leaking timing information to an attacker. Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering this issue. (CVE-2012-0884)
2011-10-19"make update"Bodo Möller
2011-10-10Backport ossl_ssize_t type from HEAD.Dr. Stephen Henson
2011-10-09Backport of password based CMS support from HEAD.Dr. Stephen Henson
2011-09-16make dependDr. Stephen Henson
2011-09-16Improved error checking for DRBG calls.Dr. Stephen Henson
New functionality to allow default DRBG type to be set during compilation or during runtime.
2011-06-03Backport libcrypto audit: check return values of EVP functions insteadDr. Stephen Henson
of assuming they will always suceed.
2010-06-01Fix CVE-2010-1633 and CVE-2010-0742.Dr. Stephen Henson
2010-02-02tolerate broken CMS/PKCS7 implementations using signature OID instead of digestDr. Stephen Henson
2009-09-30PR: 2058Dr. Stephen Henson
Submitted by: Julia Lawall <julia@diku.dk> Approved by: steve@openssl.org Correct EVP_DigestVerifyFinal error handling.
2009-09-13Submitted by: Julia Lawall <julia@diku.dk>Dr. Stephen Henson
The functions ENGINE_ctrl(), OPENSSL_isservice(), EVP_PKEY_sign(), CMS_get1_RecipientRequest() and RAND_bytes() can return <=0 on error fix so the return code is checked correctly.
2009-03-25Update from stable branch.Dr. Stephen Henson
2009-03-15Use correct ctx name.Dr. Stephen Henson
2009-03-15Fix from stable branch.Dr. Stephen Henson
2008-11-21Set memory BIOs up properly when stripping text headers from S/MIME messages.Dr. Stephen Henson
2008-08-05Correctly handle errors in CMS I/O code.Dr. Stephen Henson
2008-05-02New function CMS_add1_crl().Dr. Stephen Henson
2008-04-18Make certs argument work in CMS_sign() add test case.Dr. Stephen Henson
PR:1664
2008-04-11Fix prototype for CMS_decrypt(), don't free up detached content.Dr. Stephen Henson
2008-04-11Revert argument swap change... oops CMS_uncompress() was consistent...Dr. Stephen Henson
2008-04-11Make CMS_uncompress() argument order consistent with other functions.Dr. Stephen Henson
2008-04-11Fix for compression and updated CMS_final().Dr. Stephen Henson
2008-04-10Add additional parameter to CMS_final() to handle detached content.Dr. Stephen Henson
2008-04-10Ignore nonsensical flags for signed receipts.Dr. Stephen Henson
2008-04-07Implement CMS_NOCRL.Dr. Stephen Henson
2008-04-06Set contentType attribute just before signing to allow encapsulated contentDr. Stephen Henson
type to be set at any time in applications.
2008-04-06Fix typo and add header files to err library.Dr. Stephen Henson
2008-04-06Give consistent return value and add error code for duplicate certificates.Dr. Stephen Henson
2008-04-01Avoid warnings.Dr. Stephen Henson
2008-03-31Use correct headers for signed receipts. Use consistent naming.Dr. Stephen Henson
Update cms-test.pl to support OpenSSL 0.9.8.
2008-03-29Update dependencies.Dr. Stephen Henson
2008-03-29Remove unnecessary header.Dr. Stephen Henson
2008-03-28Signed receipt generation code.Dr. Stephen Henson
2008-03-28Support for verification of signed receipts.Dr. Stephen Henson
2008-03-26Add support for signed receipt request printout and generation.Dr. Stephen Henson
2008-03-26Signed Receipt Request utility functions and option on CMS utility toDr. Stephen Henson
print out receipt requests.
2008-03-24Add signed receipt ASN1 structures. Initial GENERAL_NAME utility functions.Dr. Stephen Henson
2008-03-22Update dependencies.Dr. Stephen Henson
2008-03-19Comment out a (currently) unused CMS function. (Sorry Steve, but I needGeoff Thorpe
-Werror right now to help me code-by-domino :-)
2008-03-19Allow alternate eContentType oids to be set in cms utility.Dr. Stephen Henson
Add id-ct-asciiTextWithCRLF OID. Give more meaninful error message is attempt to use key ID from a certificate without a key ID.
2008-03-19Rebuild CMS error codes.Dr. Stephen Henson
2008-03-19Add support for KEK decrypt in cms utility.Dr. Stephen Henson
2008-03-19Add support for KEKRecipientInfo in cms application.Dr. Stephen Henson
2008-03-18Uninitialized variable bug fix.Dr. Stephen Henson
2008-03-18Various tidies/fixes:Dr. Stephen Henson
Make streaming support in cms cleaner. Note errors in various S/MIME functions if CMS_final() fails. Add streaming support for enveloped data.
2008-03-18More support for KEK RecipientInfo.Dr. Stephen Henson
Generalise RecipientInfo and enveloped data handling so applications can add their own key lookup routines as well as using the standard ones.
2008-03-17Partial support for KEKRecipientInfo type.Dr. Stephen Henson
2008-03-17Preliminary support for enveloped data content type creation.Dr. Stephen Henson
Fix signed data creation so versions are only corrected if structure is being created.