]> git.ipfire.org Git - thirdparty/openssl.git/history - crypto/x509/x509_vfy.c
projects / thirdparty / openssl.git / history
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
Fix stacks of OPENSSL_STRING, OPENSSL_CSTRING and OPENSSL_BLOCK
[thirdparty/openssl.git] / crypto / x509 / x509_vfy.c
2020-09-13  Matt CaswellFix stacks of OPENSSL_STRING, OPENSSL_CSTRING and OPENS... blob | commitdiff | raw
2020-09-13  Matt CaswellFix safestack issues in x509v3.h blob | commitdiff | raw | diff to current
2020-09-13  Matt CaswellFix safestack issues in x509.h blob | commitdiff | raw | diff to current
2020-09-11  Dr. David von Oheimbcheck_chain_extensions(): Require X.509 v3 if extension... blob | commitdiff | raw | diff to current
2020-09-11  Dr. David von Oheimbcheck_chain_extensions(): Change exclusion condition... blob | commitdiff | raw | diff to current
2020-09-11  Dr. David von Oheimbx509_vfy.c: Make sure that strict checks are not done... blob | commitdiff | raw | diff to current
2020-09-11  Dr. David von Oheimbcheck_chain_extensions(): Add check that CA cert includ... blob | commitdiff | raw | diff to current
2020-09-11  Dr. David von Oheimbcheck_chain_extensions(): Add check that on empty Subje... blob | commitdiff | raw | diff to current
2020-09-11  Dr. David von Oheimbcheck_chain_extensions(): Add check that AKID and SKID... blob | commitdiff | raw | diff to current
2020-09-11  Dr. David von Oheimbcheck_chain_extensions(): Add check that Basic Constrai... blob | commitdiff | raw | diff to current
2020-09-11  Dr. David von OheimbExtend X509 cert checks and error reporting in v3_... blob | commitdiff | raw | diff to current
2020-08-12  Dr. David von OheimbIntroduce X509_add_cert[s] simplifying various addition... blob | commitdiff | raw | diff to current
2020-07-24  Shane LontisAdd X509 related libctx changes. blob | commitdiff | raw | diff to current
2020-07-16  Dr. David von Oheimbx509_vfy.c: Improve key usage checks in internal_verify... blob | commitdiff | raw | diff to current
2020-07-01  Dr. David von OheimbAdd X509_self_signed(), extending and improving documen... blob | commitdiff | raw | diff to current
2020-07-01  Dr. David von OheimbFix issue 1418 by moving check of KU_KEY_CERT_SIGN... blob | commitdiff | raw | diff to current
2020-07-01  Dr. David von OheimbOptimization and safety precaution in find_issuer(... blob | commitdiff | raw | diff to current
2020-07-01  Dr. David von OheimbRefactor (without semantic changes) crypto/x509/{v3_pur... blob | commitdiff | raw | diff to current
2020-07-01  Dr. David von OheimbImprove documentation, layout, and code comments regard... blob | commitdiff | raw | diff to current
2020-05-25  PauliCoverity 1463830: Resource leaks (RESOURCE_LEAK) blob | commitdiff | raw | diff to current
2020-05-18  Bernd EdlingerFix some places where X509_up_ref is used blob | commitdiff | raw | diff to current
2020-04-30  Paulicoverity 1462560 Resource leak blob | commitdiff | raw | diff to current
2020-04-24  Rich SalzIn OpenSSL builds, declare STACK for datatypes ... blob | commitdiff | raw | diff to current
2020-04-16  Matt CaswellIntroduce an internal version of X509_check_issued() blob | commitdiff | raw | diff to current
2020-04-16  Matt CaswellCreate a libctx aware X509_verify_ex() blob | commitdiff | raw | diff to current
2020-04-08  Matt CaswellUse the libctx and propq from the X509_STORE_CTX blob | commitdiff | raw | diff to current
2020-04-08  Matt CaswellAdd X509_STORE_CTX_new_with_libctx() blob | commitdiff | raw | diff to current
2020-04-06  Tomas MrazSet X509_V_ERR_INVALID_EXTENSION error for invalid... blob | commitdiff | raw | diff to current
2020-03-23  Dr. David von OheimbConstify various mostly X509-related parameter types... blob | commitdiff | raw | diff to current
2020-03-21  Bernd EdlingerFix error handling in x509v3_cache_extensions and relat... blob | commitdiff | raw | diff to current
2019-12-04  Dr. David von Oheimbadd X509_cmp_timeframe() including its documentation blob | commitdiff | raw | diff to current
2019-10-09  Rich SalzExplicitly test against NULL; do not use !p or similar blob | commitdiff | raw | diff to current
2019-09-28  Dr. Matthias St... Reorganize local header files blob | commitdiff | raw | diff to current
2019-09-28  Dr. Matthias St... Reorganize private crypto header files blob | commitdiff | raw | diff to current
2019-08-14  opensslonzos-githubAdd missing EBCDIC strings blob | commitdiff | raw | diff to current
2019-07-31  Shane LontisRename X509_STORE ptr stored in opaque struct X509_STOR... blob | commitdiff | raw | diff to current
2018-12-20  Ken GoldmanAdmit unknown pkey types at security level 0 blob | commitdiff | raw | diff to current
2018-12-06  Richard LevitteFollowing the license change, modify the boilerplates... blob | commitdiff | raw | diff to current
2018-10-18  Viktor DukhovniApply self-imposed path length also to root CAs blob | commitdiff | raw | diff to current
2018-10-18  Viktor DukhovniOnly CA certificates can be self-issued blob | commitdiff | raw | diff to current
2018-05-23  Viktor DukhovniSkip CN DNS name constraint checks when not needed blob | commitdiff | raw | diff to current
2018-05-01  Matt CaswellUpdate copyright year blob | commitdiff | raw | diff to current
2018-04-24  FdaSilvaYYX509: add more error codes on malloc or sk_TYP_push... blob | commitdiff | raw | diff to current
2017-09-28  PauliRemove unnecessary #include <openssl/lhash.h> directives. blob | commitdiff | raw | diff to current
2017-09-22  David BenjaminGuard against DoS in name constraints handling. blob | commitdiff | raw | diff to current
2017-08-22  Rich SalzUse "" not <> for internal/ includes blob | commitdiff | raw | diff to current
2017-08-21  PauliThis has been added to avoid the situation where some... blob | commitdiff | raw | diff to current
2017-08-21  Matt CaswellRemove OPENSSL_assert() from crypto/x509 blob | commitdiff | raw | diff to current
2017-04-25  Dr. Stephen HensonUse X509_get_signature_info() when checking security... blob | commitdiff | raw | diff to current
2017-02-24  Emilia KasperX509 time: tighten validation per RFC 5280 blob | commitdiff | raw | diff to current
2016-12-03  Viktor DukhovniRestore last-resort expired untrusted intermediate... blob | commitdiff | raw | diff to current
2016-08-24  Viktor DukhovniUn-delete still documented X509_STORE_CTX_set_verify blob | commitdiff | raw | diff to current
2016-08-22  Matt CaswellAdd some sanity checks when checking CRL scores blob | commitdiff | raw | diff to current
2016-08-19  Dr. Stephen HensonConstify certificate and CRL time routines. blob | commitdiff | raw | diff to current
2016-08-05  klemensspelling fixes, just comments and readme. blob | commitdiff | raw | diff to current
2016-08-03  Richard LevitteDon't check any revocation info on proxy certificates blob | commitdiff | raw | diff to current
2016-07-29  Dr. Stephen HensonFix CRL time comparison. blob | commitdiff | raw | diff to current
2016-07-26  Dr. Stephen HensonRemove current_method from X509_STORE_CTX blob | commitdiff | raw | diff to current
2016-07-25  Richard LevitteAdd setter and getter for X509_STORE's check_policy blob | commitdiff | raw | diff to current
2016-07-25  Richard LevitteAdd getters / setters for the X509_STORE_CTX and X509_S... blob | commitdiff | raw | diff to current
2016-07-22  Dr. Stephen HensonUse newest CRL. blob | commitdiff | raw | diff to current
2016-07-12  Viktor DukhovniPerform DANE-EE(3) name checks by default blob | commitdiff | raw | diff to current
2016-07-11  Dr. Stephen HensonAdd nameConstraints commonName checking. blob | commitdiff | raw | diff to current
2016-06-29  Richard LevitteRemove the envvar hack to enable proxy cert processing blob | commitdiff | raw | diff to current
2016-06-29  FdaSilvaYYWhitespace cleanup in crypto blob | commitdiff | raw | diff to current
2016-06-20  Richard LevitteFix proxy certificate pathlength verification blob | commitdiff | raw | diff to current
2016-06-20  Richard LevitteCheck that the subject name in a proxy cert complies... blob | commitdiff | raw | diff to current
2016-05-18  Viktor DukhovniEnsure verify error is set when X509_verify_cert()... blob | commitdiff | raw | diff to current
2016-05-17  Rich SalzX509_STORE_CTX accessors. blob | commitdiff | raw | diff to current
2016-05-17  Rich SalzCopyright consolidation 09/10 blob | commitdiff | raw | diff to current
2016-05-09  FdaSilvaYYfix tab-space mixed indentation blob | commitdiff | raw | diff to current
2016-05-03  Viktor DukhovniDrop duplicate ctx->verify_cb assignment blob | commitdiff | raw | diff to current
2016-04-28  Viktor DukhovniImplement X509_STORE_CTX_set_current_cert() accessor blob | commitdiff | raw | diff to current
2016-04-27  Viktor DukhovniFuture proof build_chain() in x509_vfy.c blob | commitdiff | raw | diff to current
2016-04-25  Viktor DukhovniAdded missing X509_STORE_CTX_set_error_depth() accessor blob | commitdiff | raw | diff to current
2016-04-18  Rich SalzRename some lowercase API's blob | commitdiff | raw | diff to current
2016-04-16  Dr. Stephen HensonAdd X509_STORE_CTX_set0_untrusted function. blob | commitdiff | raw | diff to current
2016-04-15  Rich SalzMake many X509_xxx types opaque. blob | commitdiff | raw | diff to current
2016-04-08  Rich SalzAdd SSL_DANE typedef for consistency. blob | commitdiff | raw | diff to current
2016-04-03  Viktor DukhovniMove peer chain security checks into x509_vfy.c blob | commitdiff | raw | diff to current
2016-04-03  Viktor DukhovniTidy up x509_vfy callback handling blob | commitdiff | raw | diff to current
2016-03-30  Viktor DukhovniRequire intermediate CAs to have basicConstraints CA... blob | commitdiff | raw | diff to current
2016-03-21  Viktor DukhovniAdd a comment on dane_verify() logic blob | commitdiff | raw | diff to current
2016-03-08  Alessandro GhediniConvert CRYPTO_LOCK_X509_* to new multi-threading API blob | commitdiff | raw | diff to current
2016-02-10  Viktor DukhovniDeprecate the -issuer_checks debugging option blob | commitdiff | raw | diff to current
2016-02-08  Viktor DukhovniSuppress DANE TLSA reflection when verification fails blob | commitdiff | raw | diff to current
2016-02-05  FdaSilvaYYGH601: Various spelling fixes. blob | commitdiff | raw | diff to current
2016-02-05  Viktor DukhovniEnsure correct chain depth for policy checks with DANE... blob | commitdiff | raw | diff to current
2016-02-05  Viktor DukhovniLong overdue cleanup of X509 policy tree verification blob | commitdiff | raw | diff to current
2016-02-01  Viktor DukhovniCompat self-signed trust with reject-only aux data blob | commitdiff | raw | diff to current
2016-02-01  Viktor DukhovniCheck chain extensions also for trusted certificates blob | commitdiff | raw | diff to current
2016-01-26  Rich SalzRemove /* foo.c */ comments blob | commitdiff | raw | diff to current
2016-01-20  Viktor DukhovniCheck Suite-B constraints with EE DANE records blob | commitdiff | raw | diff to current
2016-01-18  Viktor DukhovniDrop cached certificate signature validity flag blob | commitdiff | raw | diff to current
2016-01-15  Dr. Stephen HensonAdd lookup_certs for a trusted stack. blob | commitdiff | raw | diff to current
2016-01-14  Viktor DukhovniCosmetic polish for last-resort depth 0 check blob | commitdiff | raw | diff to current
2016-01-14  Viktor DukhovniFix last-resort depth 0 check when the chain has multip... blob | commitdiff | raw | diff to current
2016-01-14  Viktor DukhovniAlways initialize X509_STORE_CTX get_crl pointer blob | commitdiff | raw | diff to current
2016-01-07  Viktor DukhovniDANE support for X509_verify_cert() blob | commitdiff | raw | diff to current
2016-01-06  Viktor DukhovniDANE support structures, constructructors and accessors blob | commitdiff | raw | diff to current
next
A mirror of the official openssl repository