summaryrefslogtreecommitdiffstats
path: root/crypto/x509
AgeCommit message (Expand)Author
2014-11-28Remove all .cvsignore filesRich Salz
2014-09-09RT1909: Omit version for v1 certificatesGeoff Keating
2014-09-08RT2841: Extra return in check_issuedPaul Suhler
2014-09-05Add i2d_re_X509_tbsEmilia Kasper
2014-08-17NETSCAPE_SPKI_b64_encode: free der_spki and b64_str on error pathJonas Maebe
2014-08-17get_cert_by_subject: check for NULL when allocating hentJonas Maebe
2014-08-15RT2751: Declare get_issuer_sk() earlier.Rich Salz
2014-07-07Update API to use (char *) for email addresses and hostnamesViktor Dukhovni
2014-07-06Set optional peername when X509_check_host() succeeds.Viktor Dukhovni
2014-07-06New peername element in X509_VERIFY_PARAM_IDViktor Dukhovni
2014-06-30Make depend.Ben Laurie
2014-06-23One more typo when changing !result to result <= 0Viktor Dukhovni
2014-06-22Fix typo in last commitViktor Dukhovni
2014-06-22Multiple verifier reference identities.Viktor Dukhovni
2014-06-22X509_check_mumble() failure is <= 0, not just 0Viktor Dukhovni
2014-06-22Drop hostlen from X509_VERIFY_PARAM_ID.Viktor Dukhovni
2014-05-25Don't use expired certificates if possible.Dr. Stephen Henson
2014-05-25Rename vpm_int.h to x509_lcl.hDr. Stephen Henson
2014-05-21Fixes to host checking.Viktor Dukhovni
2014-03-03For self signed root only indicate one error.Dr. Stephen Henson
2014-02-24x509/by_dir.c: fix run-away pointer (and potential SEGV)Andy Polyakov
2014-02-19make dependDr. Stephen Henson
2014-02-14Include TA in checks/callback with partial chains.Dr. Stephen Henson
2014-02-14Don't do loop detection for self signed check.Dr. Stephen Henson
2014-01-26Compare encodings in X509_cmp as well as hash.Dr. Stephen Henson
2014-01-09Fix bug in X509_V_FLAG_IGNORE_CRITICAL CRL handling.Dr. Stephen Henson
2013-12-13Add opaque ID structure.Dr. Stephen Henson
2013-12-13Fix for partial chain notification.Dr. Stephen Henson
2013-09-08Partial path fix.Dr. Stephen Henson
2013-08-17Make no-ec compilation work.Dr. Stephen Henson
2013-07-12Fix verify loop with CRL checking.Dr. Stephen Henson
2013-06-05Reencode with X509_CRL_ctx_sign too.Dr. Stephen Henson
2013-05-02Reencode certificates in X509_sign_ctx.Dr. Stephen Henson
2013-01-19Make "make depend" work on MacOS out of the box.Ben Laurie
2013-01-06Fix warning.Ben Laurie
2012-12-21Make partial chain checking work if we only have the EE certificate inDr. Stephen Henson
2012-12-13New verify flag to return success if we have any certificate in theDr. Stephen Henson
2012-12-06Fix two bugs which affect delta CRL handling:Dr. Stephen Henson
2012-12-05Integrate host, email and IP address checks into X509_verify.Dr. Stephen Henson
2012-12-04initial support for delta CRL generations by diffing two full CRLsDr. Stephen Henson
2012-11-29add wrapper function for certificate downloadDr. Stephen Henson
2012-11-28Generalise OCSP I/O functions to support dowloading of other ASN1Dr. Stephen Henson
2012-11-27New functions to set lookup_crls callback and to retrieve internal X509_STOREDr. Stephen Henson
2012-08-03Rename Suite B functions for consistency.Dr. Stephen Henson
2012-08-03add suite B chain validation flags and associated verify errorsDr. Stephen Henson
2012-07-19Don't ignore (\!) reference count in X509_STORE_freeDr. Stephen Henson
2012-06-13New functions to retrieve certificate signatures and signature OID NID.Dr. Stephen Henson
2012-06-12print out issuer and subject unique identifier fields in certificatesDr. Stephen Henson
2012-04-16Minor compatibility fixes.Andy Polyakov
2012-03-05don't do loop check for single self signed certificateDr. Stephen Henson
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-13 02:23:46 +0000