summaryrefslogtreecommitdiffstats
path: root/crypto/x509/x509_txt.c
AgeCommit message (Expand)Author
2020-09-22Update copyright yearMatt Caswell
2020-09-21Disallow certs with explicit curve in verification chainTomas Mraz
2017-10-18Remove parentheses of return.KaoruToda
2017-09-29Remove unnecessary #include <openssl/lhash.h> directives.Pauli
2017-04-12OCSP Updates: error codes and multiple certificatesTodd Short
2016-06-20Check that the subject name in a proxy cert complies to RFC 3820Richard Levitte
2016-05-19When strict SCT fails record verification failureViktor Dukhovni
2016-05-18Ensure verify error is set when X509_verify_cert() failsViktor Dukhovni
2016-05-17Copyright consolidation 09/10Rich Salz
2016-04-03Move peer chain security checks into x509_vfy.cViktor Dukhovni
2016-02-10Deprecate the -issuer_checks debugging optionViktor Dukhovni
2016-02-08Suppress DANE TLSA reflection when verification failsViktor Dukhovni
2016-01-26Remove /* foo.c */ commentsRich Salz
2015-05-14Identify and move common internal libcrypto header filesRichard Levitte
2015-01-22Run util/openssl-format-source -v -c .Matt Caswell
2012-12-05Integrate host, email and IP address checks into X509_verify.Dr. Stephen Henson
2012-08-03add suite B chain validation flags and associated verify errorsDr. Stephen Henson
2010-12-25avoid verification loops in trusted store when path buildingDr. Stephen Henson
2008-08-29Add support for CRLs partitioned by reason code.Dr. Stephen Henson
2008-08-08Initial support for name constraints certificate extension.Dr. Stephen Henson
2007-05-19Typo in x509_txt.c.Andy Polyakov
2006-11-27Add RFC 3779 support.Ben Laurie
2006-09-14Support for AKID in CRLs and partial support for IDP. Overhaul of CRLDr. Stephen Henson
2005-04-09Added restrictions on the use of proxy certificates, as they may poseRichard Levitte
2004-12-28Add functionality needed to process proxy certificates.Richard Levitte
2004-11-29Make an explicit check during certificate validation to see that theRichard Levitte
2004-09-06New X509_VERIFY_PARAM structure and associated functionality.Dr. Stephen Henson
2004-03-05Various X509 fixes. Disable broken certificate workaroundsDr. Stephen Henson
2003-12-27Use BUF_strlcpy() instead of strcpy().Richard Levitte
2001-10-21Reject certificates with unhandled critical extensions.Dr. Stephen Henson
2001-10-08Small documentation fixes (Howard Lum <howard@pumpkin.canada.sun.com>)Lutz Jänicke
2001-05-07Initial CRL based revocation checking.Dr. Stephen Henson
2000-09-05*BIG* verify code reorganisation.Dr. Stephen Henson
1999-11-27Add trust setting support to the verify code. It now checks theDr. Stephen Henson
1999-11-24Initial chain verify code: not tested probably not workingDr. Stephen Henson
1999-09-11Initial support for MacOS.Andy Polyakov
1999-04-23Change #include filenames from <foo.h> to <openssl.h>.Bodo Möller
1999-04-19Change functions to ANSI C.Ulf Möller
1999-04-17Massive constification.Ben Laurie
1999-04-12Make sure a corresponding plain text error message exists for theRalf S. Engelschall
1999-01-30More pissing about to get pem.h to behave properly.Ben Laurie
1998-12-21Import of old SSLeay release: SSLeay 0.9.0bRalf S. Engelschall
1998-12-21Import of old SSLeay release: SSLeay 0.8.1bRalf S. Engelschall
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-16 07:04:20 +0000