index
:
openssl
OpenSSL-engine-0_9_6-stable
OpenSSL-fips-0_9_7-stable
OpenSSL-fips-0_9_8-stable
OpenSSL-fips-1_2-stable
OpenSSL-fips-2_0-dev
OpenSSL-fips-2_0-stable
OpenSSL-fips2-0_9_7-stable
OpenSSL_0_9_6-stable
OpenSSL_0_9_7-stable
OpenSSL_0_9_8-stable
OpenSSL_0_9_8fg-stable
OpenSSL_1_0_0-stable
OpenSSL_1_0_1-stable
OpenSSL_1_0_2-stable
OpenSSL_1_1_0-stable
OpenSSL_1_1_1-stable
SSLeay
feature/dtls-1.3
feature/ech
feature/quic-server
master
openssl-3.0
openssl-3.1
openssl-3.2
openssl-3.3
tls1.3-draft-18
tls1.3-draft-19
Mirror of https://github.com/openssl/openssl
matthias
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
crypto
/
x509
/
x509_vfy.c
Age
Commit message (
Expand
)
Author
2020-07-01
Add X509_self_signed(), extending and improving documenation and tests
Dr. David von Oheimb
2020-07-01
Fix issue 1418 by moving check of KU_KEY_CERT_SIGN and weakening check_issued()
Dr. David von Oheimb
2020-07-01
Optimization and safety precaution in find_issuer() of x509_vfy.c:
Dr. David von Oheimb
2020-07-01
Refactor (without semantic changes) crypto/x509/{v3_purp.c,x509_vfy.c}
Dr. David von Oheimb
2020-07-01
Improve documentation, layout, and code comments regarding self-issued certs ...
Dr. David von Oheimb
2020-05-26
Coverity 1463830: Resource leaks (RESOURCE_LEAK)
Pauli
2020-05-18
Fix some places where X509_up_ref is used
Bernd Edlinger
2020-04-30
coverity 1462560 Resource leak
Pauli
2020-04-24
In OpenSSL builds, declare STACK for datatypes ...
Rich Salz
2020-04-16
Introduce an internal version of X509_check_issued()
Matt Caswell
2020-04-16
Create a libctx aware X509_verify_ex()
Matt Caswell
2020-04-09
Use the libctx and propq from the X509_STORE_CTX
Matt Caswell
2020-04-08
Add X509_STORE_CTX_new_with_libctx()
Matt Caswell
2020-04-06
Set X509_V_ERR_INVALID_EXTENSION error for invalid basic constraints
Tomas Mraz
2020-03-23
Constify various mostly X509-related parameter types in crypto/ and apps/
Dr. David von Oheimb
2020-03-21
Fix error handling in x509v3_cache_extensions and related functions
Bernd Edlinger
2019-12-04
add X509_cmp_timeframe() including its documentation
Dr. David von Oheimb
2019-10-09
Explicitly test against NULL; do not use !p or similar
Rich Salz
2019-09-28
Reorganize local header files
Dr. Matthias St. Pierre
2019-09-28
Reorganize private crypto header files
Dr. Matthias St. Pierre
2019-08-14
Add missing EBCDIC strings
opensslonzos-github
2019-07-31
Rename X509_STORE ptr stored in opaque struct X509_STORE_CTX
Shane Lontis
2018-12-20
Admit unknown pkey types at security level 0
Ken Goldman
2018-12-06
Following the license change, modify the boilerplates in crypto/x509/
Richard Levitte
2018-10-18
Apply self-imposed path length also to root CAs
Viktor Dukhovni
2018-10-18
Only CA certificates can be self-issued
Viktor Dukhovni
2018-05-23
Skip CN DNS name constraint checks when not needed
Viktor Dukhovni
2018-05-01
Update copyright year
Matt Caswell
2018-04-24
X509: add more error codes on malloc or sk_TYP_push failure
FdaSilvaYY
2017-09-29
Remove unnecessary #include <openssl/lhash.h> directives.
Pauli
2017-09-22
Guard against DoS in name constraints handling.
David Benjamin
2017-08-22
Use "" not <> for internal/ includes
Rich Salz
2017-08-22
This has been added to avoid the situation where some host ctype.h functions
Pauli
2017-08-21
Remove OPENSSL_assert() from crypto/x509
Matt Caswell
2017-04-25
Use X509_get_signature_info() when checking security levels.
Dr. Stephen Henson
2017-02-24
X509 time: tighten validation per RFC 5280
Emilia Kasper
2016-12-02
Restore last-resort expired untrusted intermediate issuers
Viktor Dukhovni
2016-08-24
Un-delete still documented X509_STORE_CTX_set_verify
Viktor Dukhovni
2016-08-23
Add some sanity checks when checking CRL scores
Matt Caswell
2016-08-19
Constify certificate and CRL time routines.
Dr. Stephen Henson
2016-08-05
spelling fixes, just comments and readme.
klemens
2016-08-03
Don't check any revocation info on proxy certificates
Richard Levitte
2016-07-29
Fix CRL time comparison.
Dr. Stephen Henson
2016-07-26
Remove current_method from X509_STORE_CTX
Dr. Stephen Henson
2016-07-25
Add setter and getter for X509_STORE's check_policy
Richard Levitte
2016-07-25
Add getters / setters for the X509_STORE_CTX and X509_STORE functions
Richard Levitte
2016-07-22
Use newest CRL.
Dr. Stephen Henson
2016-07-12
Perform DANE-EE(3) name checks by default
Viktor Dukhovni
2016-07-11
Add nameConstraints commonName checking.
Dr. Stephen Henson
2016-06-30
Remove the envvar hack to enable proxy cert processing
Richard Levitte
[next]