index
:
openssl
OpenSSL-engine-0_9_6-stable
OpenSSL-fips-0_9_7-stable
OpenSSL-fips-0_9_8-stable
OpenSSL-fips-1_2-stable
OpenSSL-fips-2_0-dev
OpenSSL-fips-2_0-stable
OpenSSL-fips2-0_9_7-stable
OpenSSL_0_9_6-stable
OpenSSL_0_9_7-stable
OpenSSL_0_9_8-stable
OpenSSL_0_9_8fg-stable
OpenSSL_1_0_0-stable
OpenSSL_1_0_1-stable
OpenSSL_1_0_2-stable
OpenSSL_1_1_0-stable
OpenSSL_1_1_1-stable
SSLeay
feature/dtls-1.3
feature/ech
feature/quic-server
master
openssl-3.0
openssl-3.1
openssl-3.2
openssl-3.3
tls1.3-draft-18
tls1.3-draft-19
Mirror of https://github.com/openssl/openssl
matthias
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
crypto
/
x509
/
x509_vfy.c
Age
Commit message (
Expand
)
Author
2015-03-24
Fix verify algorithm.
Dr. Stephen Henson
2015-02-25
Add flag to inhibit checking for alternate certificate chains. Setting this
Matt Caswell
2015-02-25
In certain situations the server provided certificate chain may no longer be
Matt Caswell
2015-02-09
Remove obsolete IMPLEMENT_ASN1_SET_OF
Dr. Stephen Henson
2015-02-08
Final (for me, for now) dead code cleanup
Rich Salz
2015-02-06
util/mkstack.pl now generates entire safestack.h
Rich Salz
2015-01-27
OPENSSL_NO_xxx cleanup: RFC3779
Rich Salz
2015-01-27
OPENSSL_NO_xxx cleanup: many removals
Rich Salz
2015-01-22
More comment realignment
master-post-reformat
Matt Caswell
2015-01-22
Run util/openssl-format-source -v -c .
Matt Caswell
2015-01-22
Further comment changes for reformat (master)
Matt Caswell
2015-01-06
Further comment amendments to preserve formatting prior to source reformat
Matt Caswell
2014-09-08
RT2841: Extra return in check_issued
Paul Suhler
2014-08-15
RT2751: Declare get_issuer_sk() earlier.
Rich Salz
2014-07-07
Update API to use (char *) for email addresses and hostnames
Viktor Dukhovni
2014-07-06
Set optional peername when X509_check_host() succeeds.
Viktor Dukhovni
2014-06-23
One more typo when changing !result to result <= 0
Viktor Dukhovni
2014-06-22
Fix typo in last commit
Viktor Dukhovni
2014-06-22
Multiple verifier reference identities.
Viktor Dukhovni
2014-06-22
X509_check_mumble() failure is <= 0, not just 0
Viktor Dukhovni
2014-06-22
Drop hostlen from X509_VERIFY_PARAM_ID.
Viktor Dukhovni
2014-05-25
Don't use expired certificates if possible.
Dr. Stephen Henson
2014-05-25
Rename vpm_int.h to x509_lcl.h
Dr. Stephen Henson
2014-05-21
Fixes to host checking.
Viktor Dukhovni
2014-03-03
For self signed root only indicate one error.
Dr. Stephen Henson
2014-02-14
Include TA in checks/callback with partial chains.
Dr. Stephen Henson
2014-02-14
Don't do loop detection for self signed check.
Dr. Stephen Henson
2014-01-09
Fix bug in X509_V_FLAG_IGNORE_CRITICAL CRL handling.
Dr. Stephen Henson
2013-12-13
Add opaque ID structure.
Dr. Stephen Henson
2013-12-13
Fix for partial chain notification.
Dr. Stephen Henson
2013-09-08
Partial path fix.
Dr. Stephen Henson
2013-07-12
Fix verify loop with CRL checking.
Dr. Stephen Henson
2013-01-06
Fix warning.
Ben Laurie
2012-12-21
Make partial chain checking work if we only have the EE certificate in
Dr. Stephen Henson
2012-12-13
New verify flag to return success if we have any certificate in the
Dr. Stephen Henson
2012-12-06
Fix two bugs which affect delta CRL handling:
Dr. Stephen Henson
2012-12-05
Integrate host, email and IP address checks into X509_verify.
Dr. Stephen Henson
2012-12-04
initial support for delta CRL generations by diffing two full CRLs
Dr. Stephen Henson
2012-08-03
Rename Suite B functions for consistency.
Dr. Stephen Henson
2012-08-03
add suite B chain validation flags and associated verify errors
Dr. Stephen Henson
2012-03-05
don't do loop check for single self signed certificate
Dr. Stephen Henson
2011-09-23
PR: 2606
Dr. Stephen Henson
2011-09-06
Initialise X509_STORE_CTX properly so CRLs with nextUpdate date in the past
Dr. Stephen Henson
2010-12-25
avoid verification loops in trusted store when path building
Dr. Stephen Henson
2010-11-02
Submitted by: Jonathan Dixon <joth@chromium.org>
Dr. Stephen Henson
2010-02-25
add -trusted_first option and verify flag
Dr. Stephen Henson
2010-02-25
tidy verify code. xn not used any more and check for self signed more efficie...
Dr. Stephen Henson
2010-02-25
Experimental support for partial chain verification: if an intermediate
Dr. Stephen Henson
2009-11-17
PR: 2103
Dr. Stephen Henson
2009-10-31
Add missing functions to allow access to newer X509_STORE_CTX status
Dr. Stephen Henson
[next]