Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Keeping track of items that still need addressed #5

Open
5 of 12 tasks
JacobBarthelmeh opened this issue Sep 2, 2021 · 3 comments
Open
5 of 12 tasks

Keeping track of items that still need addressed #5

JacobBarthelmeh opened this issue Sep 2, 2021 · 3 comments
Assignees
@JacobBarthelmeh

Comments

@JacobBarthelmeh
Copy link
Contributor

JacobBarthelmeh commented Sep 2, 2021
edited
Loading

Trying to capture all items from review so far to make sure they are addressed.

  • Remove all fopen/fclose in preference of either WOLFSSL_BIO's or XFOPEN/XFCLOSE
  • Portability with dynamic buffer declarations (change to dynamic heap allocations instead of on stack)
  • Optimization of writing out to files (make sure is not written in DER then re written in PEM)
  • Optimization of reduction in XMEMSET's used on buffers
  • Fix for use of scanf and sanity checks around it's inputs
  • Refactor of wolfCLU_hexToBin to reduce it's complexity and number of arguments
  • Use ret checks and fall threw in function rather than wolfCLU_freeBins
  • Pass through the code to remove magic numbers i.e case 0 in clu_main.c and existing set of keyType value
  • add debug mode (adds enable-debug (-g -O0) and defaults to -O2 without debug #4)
  • add Wall flag (adds Wall to CFLAG, remove stomping on CFLAG, update automake version, and fix for warning #3)
  • refactor of free_things* functions such as the one in clu_certgen_rsa.c
  • update all file license headers
@JacobBarthelmeh JacobBarthelmeh self-assigned this Sep 2, 2021
@JacobBarthelmeh JacobBarthelmeh mentioned this issue Sep 2, 2021
Closed
@lantis1008
Copy link

lantis1008 commented Mar 26, 2022
edited
Loading

Hi Jacob, any progress towards a gencrl type command? I was going to have a go at implementing myself, but don't want to waste time if you've already got it staged elsewhere.
Thanks for your efforts on this.

Edit: That being said after looking at it for most of the weekend i'm not much closer

@lealem47
Copy link
Contributor

Hi Jacob, any progress towards a gencrl type command? I was going to have a go at implementing myself, but don't want to waste time if you've already got it staged elsewhere. Thanks for your efforts on this.

Edit: That being said after looking at it for most of the weekend i'm not much closer

@lantis1008 Have you looked into using the crl command?

@lantis1008
Copy link

@lealem47 correct me if I'm mistaken, but the CRL command appears to only be for parsing/verifying a CRL?
I'm looking for the ability to write out a CRL.
I think there was no function to write out a BIO in that format when I was looking?

See this in OpenSSL for example

https://github.com/openssl/openssl/blob/master/apps/ca.c#L1145

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees

@JacobBarthelmeh JacobBarthelmeh

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@JacobBarthelmeh @lantis1008 @lealem47