zzy/openssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
openssl/apps
History
Peter Juhasz 34ea176abf Add CMS_NO_SIGNING_TIME flag to CMS_sign(), CMS_add1_signer() 
Previously there was no way to create a CMS SignedData signature without a
signing time attribute, because CMS_SignerInfo_sign added it unconditionally.
However, there is a use case (PAdES signatures) where this attribute is not
allowed, so this commit introduces a new flag to the CMS API that causes this
attribute to be omitted at signing time.

Also add -no_signing_time option to cms command.

Fixes #15777

Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/15783)
2024-12-26 19:33:42 +01:00
..
demoSRP
Fix grammar in srp_verifier.txt
2024-04-25 11:07:20 +02:00
include
apps: directly inclusion of "e_os.h when needed
2024-09-05 17:02:51 +02:00
lib
apps/lib/apps.c: fix the wrong check in check_cert_attributes
2024-11-22 12:09:38 +01:00
asn1parse.c
Copyright year updates
2024-09-05 09:35:49 +02:00
build.info
CMP test server: move apps/{,lib/}cmp_mock_srv.c and apps/{,include/}cmp_mock_srv.h
2021-05-20 16:23:27 +02:00
ca-cert.srl
ca-key.pem
Fix verify(1) to report failure when verification fails
2016-01-13 17:55:17 -05:00
ca-req.pem
Fix verify(1) to report failure when verification fails
2016-01-13 17:55:17 -05:00
ca.c
apps: directly inclusion of "e_os.h when needed
2024-09-05 17:02:51 +02:00
CA.pl.in
Abstract out policy and extensions in CA.pl
2021-11-16 15:48:08 +00:00
cert.pem
ciphers.c
Check that sk_SSL_CIPHER_value returns non-NULL value.
2022-09-20 18:27:17 +02:00
client.pem
Replace expired test server and client certificates with new ones.
2011-12-08 14:44:05 +00:00
cmp.c
apps: directly inclusion of "e_os.h when needed
2024-09-05 17:02:51 +02:00
cms.c
Add CMS_NO_SIGNING_TIME flag to CMS_sign(), CMS_add1_signer()
2024-12-26 19:33:42 +01:00
crl2pkcs7.c
APPS: Improve diagnostics on missing/extra args and unknown cipher/digest
2021-12-07 15:26:40 +01:00
crl.c
Copyright year updates
2024-04-09 13:43:27 +02:00
ct_log_list.cnf
Remove unnecessary trailing whitespace
2019-02-05 16:25:11 +01:00
dgst.c
Copyright year updates
2024-09-05 09:35:49 +02:00
dhparam.c
APPS/dhparam: fix case where infile and outfile are the same
2024-10-04 12:09:33 +02:00
dsa512.pem
dsa1024.pem
Import of old SSLeay release: SSLeay 0.8.1b
1998-12-21 10:52:47 +00:00
dsa-ca.pem
Fix verify(1) to report failure when verification fails
2016-01-13 17:55:17 -05:00
dsa-pca.pem
Fix verify(1) to report failure when verification fails
2016-01-13 17:55:17 -05:00
dsa.c
Copyright year updates
2023-09-07 09:59:15 +01:00
dsap.pem
Import of old SSLeay release: SSLeay 0.9.0b
1998-12-21 10:56:39 +00:00
dsaparam.c
APPS/dsaparam: fix case where infile and outfile are the same
2024-10-04 12:09:33 +02:00
ec.c
Copyright year updates
2023-09-07 09:59:15 +01:00
ecparam.c
Fix wrong return value checks for some functions
2024-11-22 12:10:26 +01:00
enc.c
Copyright year updates
2024-04-09 13:43:26 +02:00
engine.c
Copyright year updates
2024-04-09 13:43:26 +02:00
errstr.c
Fix some invalid use of sscanf
2023-12-12 16:12:32 +00:00
fipsinstall.c
fipsinstall: Save the 'status indicator' if the FIPS provider is 3.0.X.
2024-10-11 14:52:37 +02:00
gendsa.c
Copyright year updates
2023-09-28 14:23:29 +01:00
genpkey.c
Copyright year updates
2024-04-09 13:43:26 +02:00
genrsa.c
Copyright year updates
2023-09-28 14:23:29 +01:00
info.c
Add 'openssl info' item for the Windows install context
2024-10-16 19:29:53 +02:00
insta.ca.crt
openssl-cmp.pod.in: Update and extend example using Insta Demo CA
2020-08-04 12:11:46 +02:00
kdf.c
kdf: use the app's libctx and property query when searching for algorithms
2021-06-15 18:26:47 +10:00
list.c
apps: directly inclusion of "e_os.h when needed
2024-09-05 17:02:51 +02:00
mac.c
Always use FORMAT_BINARY for infile
2022-09-20 08:18:25 +01:00
nseq.c
APPS: Improve diagnostics on missing/extra args and unknown cipher/digest
2021-12-07 15:26:40 +01:00
ocsp.c
APPS/ocsp: fix case where reqin and outfile are the same
2024-10-04 12:09:33 +02:00
openssl-vms.cnf
Convert jdkTrustedKeyUsage to be a pkcs12 cmd line option
2023-10-20 16:30:43 +01:00
openssl.c
apps: directly inclusion of "e_os.h when needed
2024-09-05 17:02:51 +02:00
openssl.cnf
Convert jdkTrustedKeyUsage to be a pkcs12 cmd line option
2023-10-20 16:30:43 +01:00
passwd.c
apps/passwd.c: Convert a redundant check to assert
2024-11-29 14:33:30 +01:00
pca-cert.srl
pca-key.pem
Fix verify(1) to report failure when verification fails
2016-01-13 17:55:17 -05:00
pca-req.pem
Fix verify(1) to report failure when verification fails
2016-01-13 17:55:17 -05:00
pkcs7.c
Update copyright year
2022-05-03 13:34:51 +01:00
pkcs8.c
APPS/pkcs8: fix case where infile and outfile are the same
2024-10-04 12:09:33 +02:00
pkcs12.c
To verify MAC, we need a MAC
2024-12-11 18:27:54 +01:00
pkey.c
APPS/pkey: fix case where infile and outfile are the same
2024-10-04 12:09:33 +02:00
pkeyparam.c
APPS/{ecparam,pkeyparam}: fix case where infile and outfile are the same
2024-10-04 12:09:33 +02:00
pkeyutl.c
pkeyutl.c: Avoid freeing pkey at multiple places
2024-11-20 17:40:26 +01:00
prime.c
Fix multiple wrong use of BN_check_prime
2024-11-22 12:09:38 +01:00
privkey.pem
PR: 1644
2009-09-06 15:49:46 +00:00
progs.pl
Copyright year updates
2023-09-28 14:23:29 +01:00
rand.c
Augment rand argument parsing to allow scaling
2023-11-13 12:21:34 +01:00
rehash.c
rehash.c: handle possible null pointer returned by OPENSSL_strdup
2024-09-09 09:20:08 +02:00
req.c
apps: Change default cipher to aes-256-cbc for req, cms and smime apps
2024-11-04 09:56:55 +01:00
req.pem
rsa8192.pem
Fix rsa8192.pem
2020-05-13 06:28:36 +02:00
rsa.c
Copyright year updates
2023-09-07 09:59:15 +01:00
rsautl.c
Copyright year updates
2023-09-07 09:59:15 +01:00
s512-key.pem
Import of old SSLeay release: SSLeay 0.8.1b
1998-12-21 10:52:47 +00:00
s512-req.pem
Import of old SSLeay release: SSLeay 0.8.1b
1998-12-21 10:52:47 +00:00
s1024key.pem
Import of old SSLeay release: SSLeay 0.8.1b
1998-12-21 10:52:47 +00:00
s1024req.pem
Import of old SSLeay release: SSLeay 0.8.1b
1998-12-21 10:52:47 +00:00
s_client.c
apps: directly inclusion of "e_os.h when needed
2024-09-05 17:02:51 +02:00
s_server.c
s_server: Support reading HTTP request from early data
2024-09-12 14:19:44 +02:00
s_time.c
Copyright year updates
2024-04-09 13:43:26 +02:00
server2.pem
Replace expired test server and client certificates with new ones.
2011-12-08 14:44:05 +00:00
server.pem
Replace apps/server.pem with certificate with a sha256 signature.
2020-01-25 14:10:40 +01:00
server.srl
Import of old SSLeay release: SSLeay 0.9.0b
1998-12-21 10:56:39 +00:00
sess_id.c
APPS: Improve diagnostics on missing/extra args and unknown cipher/digest
2021-12-07 15:26:40 +01:00
smime.c
apps: Change default cipher to aes-256-cbc for req, cms and smime apps
2024-11-04 09:56:55 +01:00
speed.c
speed.c: Changed the declaration of aead_ivlen to a #define
2024-12-10 10:36:16 +01:00
spkac.c
Copyright year updates
2023-09-07 09:59:15 +01:00
srp.c
openssl srp: make index.txt parsing error more verbose
2021-05-24 14:37:00 +02:00
storeutl.c
APPS/storeutl: fix case where uri and outfile are the same
2024-10-09 11:10:19 +02:00
testCA.pem
testdsa.h
Replace OSSL_PARAM_BLD_free_params() with OSSL_PARAM_free().
2021-04-12 16:55:30 +10:00
testrsa.h
Following the license change, modify the boilerplates in apps/
2018-12-06 14:15:27 +01:00
timeouts.h
Fix header file include guard names
2019-09-28 20:26:36 +02:00
ts.c
Copyright year updates
2024-09-05 09:35:49 +02:00
tsget.in
convert tabs to spaces in two distributed Perl scripts
2021-09-14 07:21:22 +10:00
verify.c
apps & al : Fix various typos, repeated words, align some spelling to LDP.
2022-10-12 16:55:28 +11:00
version.c
Revert API change of OPENSSL_version()
2024-10-17 13:36:58 +02:00
vms_decc_init.c
VMS: move copy_argc to its own module and make it an aux source
2019-03-05 08:51:09 +01:00
x509.c
apps: ca,req,x509: Add explicit start and end dates options
2024-04-09 20:13:31 +02:00