summaryrefslogtreecommitdiffstats
path: root/crypto/x509
AgeCommit message (Expand)Author
2016-04-18Rename some lowercase API'sRich Salz
2016-04-16Add X509_STORE_CTX_set0_untrusted function.Dr. Stephen Henson
2016-04-15Make many X509_xxx types opaque.Rich Salz
2016-04-08Add SSL_DANE typedef for consistency.Rich Salz
2016-04-06Fix no-ocspMatt Caswell
2016-04-04Use X509_REQ_get0_pubkeyFdaSilvaYY
2016-04-04Add X509_REQ_get0_pubkey methodFdaSilvaYY
2016-04-04Fix two leaks in X509_REQ_to_X509FdaSilvaYY
2016-04-03Move peer chain security checks into x509_vfy.cViktor Dukhovni
2016-04-03Tidy up x509_vfy callback handlingViktor Dukhovni
2016-04-02Fix X509_PUBKEY cached key handling.Dr. Stephen Henson
2016-03-30Remove X509_PUBKEY lock.Dr. Stephen Henson
2016-03-29Require intermediate CAs to have basicConstraints CA:true.Viktor Dukhovni
2016-03-22Make X509_PUBKEY opaqueDr. Stephen Henson
2016-03-22move x_pubkey.c to crypto/x509Dr. Stephen Henson
2016-03-21Remove the remainder of util/mk1mf.pl and companion scriptsRichard Levitte
2016-03-20Add a comment on dane_verify() logicViktor Dukhovni
2016-03-20Remove #error from include files.Rich Salz
2016-03-09Remove use of the old CRYPTO_LOCK_X5O9_STOREMatt Caswell
2016-03-08Reuse strndup(), simplify codeDmitry-Me
2016-03-08Convert CRYPTO_LOCK_X509_* to new multi-threading APIAlessandro Ghedini
2016-03-04GH784: Better variable nameDmitry-Me
2016-03-01remove old unused oneline name fieldDr. Stephen Henson
2016-02-20Always build library object files with shared library cflagsRichard Levitte
2016-02-18Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPENDRichard Levitte
2016-02-11Move to REF_DEBUG, for consistency.Rich Salz
2016-02-10Deprecate the -issuer_checks debugging optionViktor Dukhovni
2016-02-08Suppress DANE TLSA reflection when verification failsViktor Dukhovni
2016-02-05GH601: Various spelling fixes.FdaSilvaYY
2016-02-05Ensure correct chain depth for policy checks with DANE bare key TAViktor Dukhovni
2016-02-05Long overdue cleanup of X509 policy tree verificationViktor Dukhovni
2016-02-01unified build scheme: add build.info filesRichard Levitte
2016-01-31Compat self-signed trust with reject-only aux dataViktor Dukhovni
2016-01-31Check chain extensions also for trusted certificatesViktor Dukhovni
2016-01-30Add function to return internal enoding of X509_NAME.Dr. Stephen Henson
2016-01-29Templatize util/domdRich Salz
2016-01-29Make it possible to check for explicit auxiliary trustViktor Dukhovni
2016-01-27Comment side-effect only calls of X509_check_purposeViktor Dukhovni
2016-01-26Remove /* foo.c */ commentsRich Salz
2016-01-20Reject when explicit trust EKU are set and none match.Viktor Dukhovni
2016-01-20Check Suite-B constraints with EE DANE recordsViktor Dukhovni
2016-01-20Remove update tagsRich Salz
2016-01-20make EVP_PKEY opaqueDr. Stephen Henson
2016-01-18Drop cached certificate signature validity flagViktor Dukhovni
2016-01-17Remove some old makefile targetsRich Salz
2016-01-16Empty SNI names are not validViktor Dukhovni
2016-01-15Add lookup_certs for a trusted stack.Dr. Stephen Henson
2016-01-14Cosmetic polish for last-resort depth 0 checkViktor Dukhovni
2016-01-14Fix last-resort depth 0 check when the chain has multiple certificatesViktor Dukhovni
2016-01-14Always initialize X509_STORE_CTX get_crl pointerViktor Dukhovni
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-13 13:39:42 +0000