index
:
openssl
OpenSSL-engine-0_9_6-stable
OpenSSL-fips-0_9_7-stable
OpenSSL-fips-0_9_8-stable
OpenSSL-fips-1_2-stable
OpenSSL-fips-2_0-dev
OpenSSL-fips-2_0-stable
OpenSSL-fips2-0_9_7-stable
OpenSSL_0_9_6-stable
OpenSSL_0_9_7-stable
OpenSSL_0_9_8-stable
OpenSSL_0_9_8fg-stable
OpenSSL_1_0_0-stable
OpenSSL_1_0_1-stable
OpenSSL_1_0_2-stable
OpenSSL_1_1_0-stable
OpenSSL_1_1_1-stable
SSLeay
feature/dtls-1.3
feature/ech
feature/quic-server
master
openssl-3.0
openssl-3.1
openssl-3.2
openssl-3.3
openssl-3.4
tls1.3-draft-18
tls1.3-draft-19
Mirror of https://github.com/openssl/openssl
matthias
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
ssl
/
ssl_cert.c
Age
Commit message (
Expand
)
Author
2024-06-27
Refactor code and fix a couple of missing DTLSv1.3 checks.
Frederik Wedel-Heinen
2023-11-27
Make ssl_cert_info read-only
Hugo Landau
2023-07-01
tls: update to structure based atomics
Pauli
2023-04-25
Fix regression of no-posix-io builds
Tomas Mraz
2023-03-28
RFC7250 (RPK) support
Todd Short
2023-03-15
Coverity 1521490: resource leak
Pauli
2023-02-24
first cut at sigalg loading
Michael Baentsch
2023-02-23
Skip subdirectories in SSL_add_dir_cert_subjects_to_stack()
olszomal
2022-10-18
Add support for compressed certificates (RFC8879)
Todd Short
2022-10-05
Stop raising ERR_R_MALLOC_FAILURE in most places
Richard Levitte
2022-07-28
SSL object refactoring using SSL_CONNECTION object
Tomas Mraz
2022-05-08
tls: ban SSL3, TLS1, TLS1.1 and DTLS1.0 at security level one and above
Pauli
2022-05-03
Update copyright year
Matt Caswell
2022-04-06
Add SSL_(CTX_)?get0_(verify|chain)_cert_store functions
Hugo Landau
2022-03-01
[ssl] Add SSL_kDHEPSK and SSL_kECDHEPSK as PFS ciphersuites for SECLEVEL >= 3
Nicola Tuveri
2022-03-01
[ssl] Prefer SSL_k(EC)?DHE to the SSL_kE(EC)?DH alias
Nicola Tuveri
2021-12-21
add OSSL_STACK_OF_X509_free() for commonly used pattern
Dr. David von Oheimb
2021-12-14
Fix invalid handling of verify errors in libssl
Matt Caswell
2021-11-16
BIO_read_filename: fix return check
Peiwei Hu
2021-09-23
Change TLS RC4 cipher strength check to be data driven.
slontis
2021-06-23
cross-reference the DH and RSA SECLEVEL to level of security mappings
Hubert Kario
2021-06-19
ssl: do not choose auto DH groups that are weaker than the security level
Pauli
2021-03-03
Fix NULL access in ssl_build_cert_chain() when ctx is NULL.
Shane Lontis
2021-02-05
Remove OPENSSL_NO_DH guards from libssl
Matt Caswell
2021-01-28
Update copyright year
Richard Levitte
2021-01-13
Add X509_NAME_hash_ex() to be able to check if it failed due to unsupported SHA1
Dr. David von Oheimb
2020-11-18
Only disabled what we need to in a no-dh build
Matt Caswell
2020-11-11
SSL: refactor all SSLfatal() calls
Richard Levitte
2020-11-11
Convert all {NAME}err() in ssl/ to their corresponding ERR_raise() call
Richard Levitte
2020-10-15
Rename OPENSSL_CTX prefix to OSSL_LIB_CTX
Dr. Matthias St. Pierre
2020-10-01
Run the withlibctx.pl script
Matt Caswell
2020-09-13
Fix safestack issues in x509.h
Matt Caswell
2020-07-24
Add X509 related libctx changes.
Shane Lontis
2020-05-15
SSL: refactor ssl_cert_lookup_by_pkey() to work with provider side keys
Richard Levitte
2020-04-30
coverity 1462581 Dereference after null check
Pauli
2020-04-24
In OpenSSL builds, declare STACK for datatypes ...
Rich Salz
2020-04-23
Update copyright year
Matt Caswell
2020-04-08
Use X509_STORE_CTX_new_with_libctx() in libssl
Matt Caswell
2020-03-30
Explicitly cache X509v3 extensions in libssl
Matt Caswell
2019-11-12
SSL: Document SSL_add_{file,dir,store}_cert_subjects_to_stack()
Richard Levitte
2019-11-03
X509_LOOKUP_store: new X509_LOOKUP_METHOD that works by OSSL_STORE URI
Richard Levitte
2019-09-28
Reorganize local header files
Dr. Matthias St. Pierre
2019-08-02
Replace FUNCerr with ERR_raise_data
Rich Salz
2019-07-22
Deprecate SYSerr, add new FUNCerr macro
Rich Salz
2019-07-22
Add ERR_put_func_error, and use it.
Rich Salz
2019-06-26
Move 'shared_sigalgs' from cert_st to ssl_st
Benjamin Kaduk
2019-04-29
Collapse ssl3_state_st (s3) into ssl_st
Todd Short
2018-12-06
Following the license change, modify the boilerplates in ssl/
Richard Levitte
2018-11-12
Separate ca_names handling for client and server
Matt Caswell
2018-11-10
Unbreak SECLEVEL 3 regression causing it to not accept any ciphers.
Tomas Mraz
[next]