openssl/crypto/x509
Richard Levitte 3c6ed9555c Rethink the EVP_PKEY cache of provider side keys
The role of this cache was two-fold:

1.  It was a cache of key copies exported to providers with which an
    operation was initiated.
2.  If the EVP_PKEY didn't have a legacy key, item 0 of the cache was
    the corresponding provider side origin, while the rest was the
    actual cache.

This dual role for item 0 made the code a bit confusing, so we now
make a separate keymgmt / keydata pair outside of that cache, which is
the provider side "origin" key.

A hard rule is that an EVP_PKEY cannot hold a legacy "origin" and a
provider side "origin" at the same time.

Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/11148)
2020-02-29 05:39:43 +01:00
..
build.info x509v3 subjectSignTool extention support 2020-02-28 18:01:16 +03:00
by_dir.c
by_file.c
by_store.c X509_LOOKUP_store: new X509_LOOKUP_METHOD that works by OSSL_STORE URI 2019-11-03 18:38:23 +01:00
ext_dat.h x509v3 subjectSignTool extention support 2020-02-28 18:01:16 +03:00
pcy_cache.c
pcy_data.c
pcy_lib.c
pcy_local.h
pcy_map.c
pcy_node.c
pcy_tree.c Fix --strict-warnings build 2019-11-03 16:38:56 +01:00
standard_exts.h x509v3 subjectSignTool extention support 2020-02-28 18:01:16 +03:00
t_crl.c
t_req.c
t_x509.c chunk 7 of CMP contribution to OpenSSL 2020-02-17 07:43:58 +01:00
v3_addr.c Rename internal function name_cmp() to v3_name_cmp() 2019-10-17 09:16:45 +02:00
v3_admis.c
v3_admis.h
v3_akey.c Check the return from OPENSSL_buf2hexstr() 2019-11-29 14:21:55 +00:00
v3_akeya.c
v3_alt.c Add support for otherName:NAIRealm in output 2019-12-11 22:29:19 +03:00
v3_asid.c Rename internal function name_cmp() to v3_name_cmp() 2019-10-17 09:16:45 +02:00
v3_bcons.c
v3_bitst.c
v3_conf.c
v3_cpols.c Rename internal function name_cmp() to v3_name_cmp() 2019-10-17 09:16:45 +02:00
v3_crld.c
v3_enum.c
v3_extku.c
v3_genn.c
v3_ia5.c
v3_info.c
v3_int.c
v3_lib.c
v3_ncons.c
v3_pci.c
v3_pcia.c
v3_pcons.c
v3_pku.c
v3_pmaps.c
v3_prn.c
v3_purp.c
v3_skey.c
v3_sxnet.c
v3_tlsf.c
v3_utf8.c x509v3 subjectSignTool extention support 2020-02-28 18:01:16 +03:00
v3_utl.c Rename internal function name_cmp() to v3_name_cmp() 2019-10-17 09:16:45 +02:00
v3err.c
x509_att.c
x509_cmp.c
x509_d2.c Update source files for pre-3.0 deprecation 2019-11-07 11:37:25 +01:00
x509_def.c
x509_err.c chunk 7 of CMP contribution to OpenSSL 2020-02-17 07:43:58 +01:00
x509_ext.c
x509_local.h
x509_lu.c chunk 7 of CMP contribution to OpenSSL 2020-02-17 07:43:58 +01:00
x509_meth.c
x509_obj.c
x509_r2x.c
x509_req.c
x509_set.c Stop accepting certificates signed using SHA1 at security level 1 2020-02-05 22:04:37 +01:00
x509_trs.c
x509_txt.c Update man3/verify documentation, error text 2020-01-23 23:18:33 +01:00
x509_v3.c
x509_vfy.c add X509_cmp_timeframe() including its documentation 2019-12-04 15:17:55 +00:00
x509_vpm.c add X509_cmp_timeframe() including its documentation 2019-12-04 15:17:55 +00:00
x509cset.c Update source files for pre-3.0 deprecation 2019-11-07 11:37:25 +01:00
x509name.c
x509rset.c
x509spki.c
x509type.c
x_all.c Generalize the HTTP client so far implemented mostly in crypto/ocsp/ocsp_ht.c 2020-02-10 16:49:37 +01:00
x_attrib.c
x_crl.c
x_exten.c
x_name.c
x_pubkey.c Rethink the EVP_PKEY cache of provider side keys 2020-02-29 05:39:43 +01:00
x_req.c
x_x509.c
x_x509a.c