Recent changes to feature-requests

#48 Have CTX functions to get info relevant for transfer Callback

Martin Peylo — Wed, 24 Jan 2018 09:26:59 -0000

status: open --> closed

#44 certConf callback should be able to override initial check results by lib

David von Oheimb — Wed, 24 Jan 2018 09:26:27 -0000

status: open --> closed

#48 Have CTX functions to get info relevant for transfer Callback

Martin Peylo — Wed, 10 Jan 2018 07:38:48 -0000

Description has changed:

Diff:

--- old
+++ new
@@ -6,6 +6,8 @@
 ctx->serverName
 ctx->serverPort
 ctx->tlsBIO <-- maybe not needed
+ctx->proxyName
+ctx->proxyPort

 others?

Have CTX functions to get info relevant for transfer Callback

Martin Peylo — Wed, 10 Jan 2018 07:36:23 -0000

CMP_PKIMESSAGE_http_perform() could be overwritten by means of a callback.

Ensure best practice information hiding by having access functions allowing to get the relevant information without needing to know the internal structure of ctx.

ctx->msgTimeOut
ctx->serverName
ctx->serverPort
ctx->tlsBIO <-- maybe not needed

others?

Also add a void pointer to the ctx to allow handing other possibly relevant information to the transfer function, e.g. source IP.

Have CTX functions to get info relevant for transfer Callback

Martin Peylo — Wed, 10 Jan 2018 07:36:23 -0000

Ticket 48 has been modified: Have CTX functions to get info relevant for transfer Callback
Edited By: Martin Peylo (mpeylo)
Description updated:
--- description-old

+++ description-new

@@ -6,6 +6,8 @@

ctx->serverName
ctx->serverPort
ctx->tlsBIO <-- maybe not needed
+ctx->proxyName
+ctx->proxyPort

others?

Have CTX functions to get info relevant for transfer Callback

Martin Peylo — Wed, 10 Jan 2018 07:36:23 -0000

Ticket 48 has been modified: Have CTX functions to get info relevant for transfer Callback
Edited By: Martin Peylo (mpeylo)
Status updated: u'open' => u'closed'

#43 Output only those certs from extraCerts useful for validating the newly enrolled cert

David von Oheimb — Tue, 09 Jan 2018 12:06:28 -0000

summary: Add option to output only those certs from extraCerts useful for validating the newly enrolled cert --> Output only those certs from extraCerts useful for validating the newly enrolled cert
Group: Upstream submission --> Version 2

#15 remember message protection method for caPubs use

David von Oheimb — Tue, 09 Jan 2018 11:56:46 -0000

summary: remember message protection for caPubs handling --> remember message protection method for caPubs use

Allow re-use of CMP_CTX for further transactions

David von Oheimb — Fri, 22 Dec 2017 12:11:59 -0000

Enabling re-use of CMP_CTX for further transactions would be an efficiency and programming convenience improvement, avoiding to free and then re-initialize various components of the internal CMP_CTX structure components, which can be quite costly - just think of trust stores including CRLs.

To this end, one could introduce a function like in CMP_CTX_reuse(CMP_CTX *ctx),
which would for instance reset any transactionID and validatedSrvCert entries.

#43 Add option to output only those certs from extraCerts useful for validating the newly enrolled cert

David von Oheimb — Tue, 19 Dec 2017 14:37:33 -0000

Description has changed:

Diff:

--- old
+++ new
@@ -1,5 +1,3 @@
-Users or applications using the library should not be bothered with certificates needed only for protecting CMP messages.
-
-This be implemented essentially by extending certConf_cb().
+Users or applications using the library should not be bothered with certificates needed only for checking the protection of CMP messages received. One could modifiy `CMP_CTX_extraCertsIn_get1()` not to return such such certifiactes, or add a new function called, e.g., `CMP_CTX_get1_newClChain()` that returns only the relavant portion of the extraCerts received. 

 This has been requested originally by Hendrik Brockhaus.