| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2013-02-05 | Don't try and verify signatures if key is NULL (CVE-2013-0166) | Dr. Stephen Henson | |
| Add additional check to catch this in ASN1_item_verify too. | |||
| 2012-11-29 | PR: 2803 | Dr. Stephen Henson | |
| Submitted by: jean-etienne.schwartz@bull.net In OCSP_basic_varify return an error if X509_STORE_CTX_init fails. | |||
| 2008-11-05 | Change old obsolete email address... | Dr. Stephen Henson | |
| 2006-11-13 | Fix from HEAD. | Dr. Stephen Henson | |
| 2004-03-04 | Typos. | Dr. Stephen Henson | |
| Reported by: Jose Castejon-Amenedo <Jose.Castejon-Amenedo@hp.com> | |||
| 2001-09-01 | Make the necessary changes to work with the recent "ex_data" overhaul. | Geoff Thorpe | |
| See the commit log message for that for more information. NB: X509_STORE_CTX's use of "ex_data" support was actually misimplemented (initialisation by "memset" won't/can't/doesn't work). This fixes that but requires that X509_STORE_CTX_init() be able to handle errors - so its prototype has been changed to return 'int' rather than 'void'. All uses of that function throughout the source code have been tracked down and adjusted. | |||
| 2001-07-11 | In ocsp_match_issuerid() we are passed the CA that signed the responder | Dr. Stephen Henson | |
| certificate so need to match its subject with the certificate IDs in the response. | |||
| 2001-02-26 | Typo in comment. | Dr. Stephen Henson | |
| 2001-02-26 | Enhance OCSP_request_verify() so it finds the signers certificate | Dr. Stephen Henson | |
| properly and supports several flags. | |||
| 2001-02-20 | Include string.h so mem* functions get properly declared. | Richard Levitte | |
| 2001-02-02 | Various function for commmon operations. | Dr. Stephen Henson | |
| 2001-01-26 | New OCSP response verify option OCSP_TRUSTOTHER | Dr. Stephen Henson | |
| 2001-01-19 | Additional functionality in ocsp utility: print summary | Dr. Stephen Henson | |
| of status info. Check nonce values. Option to disable verify. Update usage message. Rename status to string functions and make them global. | |||
| 2001-01-18 | Implement remaining OCSP verify checks in | Dr. Stephen Henson | |
| accordance with RFC2560. | |||
| 2001-01-17 | Initial OCSP certificate verify. Not complete, | Dr. Stephen Henson | |
| it just supports a "trusted OCSP global root CA". | |||
| 2001-01-11 | OCSP basic response verify. Very incomplete | Dr. Stephen Henson | |
| but will verify the signatures on a response and locate the signers certifcate. Still needs to implement a proper OCSP certificate verify. Fix warning in RAND_egd(). | |||
 |
index : openssl | |
| Mirror of https://github.com/openssl/openssl | matthias |
| summaryrefslogtreecommitdiffstats |