summaryrefslogtreecommitdiffstats
path: root/crypto/ocsp/ocsp_vfy.c
AgeCommit message (Expand)Author
2022-10-05Stop raising ERR_R_MALLOC_FAILURE in most placesRichard Levitte
2022-05-03Update copyright yearMatt Caswell
2022-05-03Fix OCSP_basic_verify signer certificate validationMatt Caswell
2021-12-21add OSSL_STACK_OF_X509_free() for commonly used patternDr. David von Oheimb
2021-06-02ocsp: remove TODOsPauli
2021-06-01Rename all getters to use get/get0 in nameTomas Mraz
2021-04-28Prefer fetch over legacy get_digestby/get_cipherbyTomas Mraz
2021-04-21ocsp: remove references to EVP_sha1()Pauli
2021-04-08Fix more certificate related lib_ctx settings.Shane Lontis
2021-02-18Add internal X509_add_certs_new(), which simplifies mattersDr. David von Oheimb
2021-02-18Update copyright yearMatt Caswell
2021-02-04Allow NULL arg to OPENSSL_sk_{dup,deep_copy} returning empty stackDr. David von Oheimb
2020-11-13CRYPTO: refactor ERR_raise()+ERR_add_error_data() to ERR_raise_data()Richard Levitte
2020-11-13Convert all {NAME}err() in crypto/ to their corresponding ERR_raise() callRichard Levitte
2020-09-26Implement treatment of id-pkix-ocsp-no-check extension for OCSP_basic_verify()Dr. David von Oheimb
2020-09-20ocsp_vfy.c: Clean up code w.r.t. coding guidelines and reduce redundanciesDr. David von Oheimb
2020-09-13Fix safestack issues in ocsp.hMatt Caswell
2020-09-13Fix safestack issues in x509.hMatt Caswell
2020-08-27Add OCSP_PARTIAL_CHAIN to OCSP_basic_verify()Rich Salz
2020-08-19OCSP: Add return value checks.Pauli
2020-08-12Introduce X509_add_cert[s] simplifying various additions to cert listsDr. David von Oheimb
2020-04-24In OpenSSL builds, declare STACK for datatypes ...Rich Salz
2020-04-23Update copyright yearMatt Caswell
2020-03-23Constify various mostly X509-related parameter types in crypto/ and apps/Dr. David von Oheimb
2019-09-28Reorganize local header filesDr. Matthias St. Pierre
2018-12-06Following the license change, modify the boilerplates in crypto/ocsp/Richard Levitte
2017-12-12Fix more OCSP_resp_get0_signer() nitsBen Kaduk
2017-11-11Add an API to get the signer of an OCSP responseBenjamin Kaduk
2017-08-16Fix OCSP_basic_verify() cert chain construction in case bs->certs is NULLDavid von Oheimb
2016-05-17Copyright consolidation 09/10Rich Salz
2016-04-26Remove dead-code infinite loopBenjamin Kaduk
2016-04-17Restore OCSP_basic_verify() error return semanticsRichard Levitte
2016-04-16Small OCSP fixupRichard Levitte
2016-04-15Make many X509_xxx types opaque.Rich Salz
2016-02-22Remove unused parameters from internal functionsRich Salz
2016-02-05GH601: Various spelling fixes.FdaSilvaYY
2016-01-26Remove /* foo.c */ commentsRich Salz
2015-12-31Use X509_get0_pubkey where appropriateDr. Stephen Henson
2015-10-11embed OCSP_CERTIDDr. Stephen Henson
2015-10-11Embed various OCSP fields.Dr. Stephen Henson
2015-09-06Avoid direct X509 structure accessDr. Stephen Henson
2015-05-11Use p==NULL not !p (in if statements, mainly)Rich Salz
2015-04-30free NULL cleanup 5aRich Salz
2015-03-24Make OCSP response verification more flexible.Dr. Stephen Henson
2015-03-05Make OCSP structures opaque.Dr. Stephen Henson
2015-01-22Run util/openssl-format-source -v -c .Matt Caswell
2014-09-10RT2560: missing NULL check in ocsp_req_find_signerRich Salz
2014-04-01Don't try and verify signatures if key is NULL (CVE-2013-0166)Dr. Stephen Henson
2012-12-20revert OCSP_basic_verify changes: they aren't needed now we support partial c...Dr. Stephen Henson
2012-12-15Check chain is not NULL before assuming we have a validated chain.Dr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-14 12:28:23 +0000