]> git.ipfire.org Git - thirdparty/openssl.git/history - crypto/x509/x509_vfy.c
projects / thirdparty / openssl.git / history
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
Perform DANE-EE(3) name checks by default
[thirdparty/openssl.git] / crypto / x509 / x509_vfy.c
2016-07-12  Viktor DukhovniPerform DANE-EE(3) name checks by default blob | commitdiff | raw
2016-07-11  Dr. Stephen HensonAdd nameConstraints commonName checking. blob | commitdiff | raw | diff to current
2016-06-29  Richard LevitteRemove the envvar hack to enable proxy cert processing blob | commitdiff | raw | diff to current
2016-06-29  FdaSilvaYYWhitespace cleanup in crypto blob | commitdiff | raw | diff to current
2016-06-20  Richard LevitteFix proxy certificate pathlength verification blob | commitdiff | raw | diff to current
2016-06-20  Richard LevitteCheck that the subject name in a proxy cert complies... blob | commitdiff | raw | diff to current
2016-05-18  Viktor DukhovniEnsure verify error is set when X509_verify_cert()... blob | commitdiff | raw | diff to current
2016-05-17  Rich SalzX509_STORE_CTX accessors. blob | commitdiff | raw | diff to current
2016-05-17  Rich SalzCopyright consolidation 09/10 blob | commitdiff | raw | diff to current
2016-05-09  FdaSilvaYYfix tab-space mixed indentation blob | commitdiff | raw | diff to current
2016-05-03  Viktor DukhovniDrop duplicate ctx->verify_cb assignment blob | commitdiff | raw | diff to current
2016-04-28  Viktor DukhovniImplement X509_STORE_CTX_set_current_cert() accessor blob | commitdiff | raw | diff to current
2016-04-27  Viktor DukhovniFuture proof build_chain() in x509_vfy.c blob | commitdiff | raw | diff to current
2016-04-25  Viktor DukhovniAdded missing X509_STORE_CTX_set_error_depth() accessor blob | commitdiff | raw | diff to current
2016-04-18  Rich SalzRename some lowercase API's blob | commitdiff | raw | diff to current
2016-04-16  Dr. Stephen HensonAdd X509_STORE_CTX_set0_untrusted function. blob | commitdiff | raw | diff to current
2016-04-15  Rich SalzMake many X509_xxx types opaque. blob | commitdiff | raw | diff to current
2016-04-08  Rich SalzAdd SSL_DANE typedef for consistency. blob | commitdiff | raw | diff to current
2016-04-03  Viktor DukhovniMove peer chain security checks into x509_vfy.c blob | commitdiff | raw | diff to current
2016-04-03  Viktor DukhovniTidy up x509_vfy callback handling blob | commitdiff | raw | diff to current
2016-03-30  Viktor DukhovniRequire intermediate CAs to have basicConstraints CA... blob | commitdiff | raw | diff to current
2016-03-21  Viktor DukhovniAdd a comment on dane_verify() logic blob | commitdiff | raw | diff to current
2016-03-08  Alessandro GhediniConvert CRYPTO_LOCK_X509_* to new multi-threading API blob | commitdiff | raw | diff to current
2016-02-10  Viktor DukhovniDeprecate the -issuer_checks debugging option blob | commitdiff | raw | diff to current
2016-02-08  Viktor DukhovniSuppress DANE TLSA reflection when verification fails blob | commitdiff | raw | diff to current
2016-02-05  FdaSilvaYYGH601: Various spelling fixes. blob | commitdiff | raw | diff to current
2016-02-05  Viktor DukhovniEnsure correct chain depth for policy checks with DANE... blob | commitdiff | raw | diff to current
2016-02-05  Viktor DukhovniLong overdue cleanup of X509 policy tree verification blob | commitdiff | raw | diff to current
2016-02-01  Viktor DukhovniCompat self-signed trust with reject-only aux data blob | commitdiff | raw | diff to current
2016-02-01  Viktor DukhovniCheck chain extensions also for trusted certificates blob | commitdiff | raw | diff to current
2016-01-26  Rich SalzRemove /* foo.c */ comments blob | commitdiff | raw | diff to current
2016-01-20  Viktor DukhovniCheck Suite-B constraints with EE DANE records blob | commitdiff | raw | diff to current
2016-01-18  Viktor DukhovniDrop cached certificate signature validity flag blob | commitdiff | raw | diff to current
2016-01-15  Dr. Stephen HensonAdd lookup_certs for a trusted stack. blob | commitdiff | raw | diff to current
2016-01-14  Viktor DukhovniCosmetic polish for last-resort depth 0 check blob | commitdiff | raw | diff to current
2016-01-14  Viktor DukhovniFix last-resort depth 0 check when the chain has multip... blob | commitdiff | raw | diff to current
2016-01-14  Viktor DukhovniAlways initialize X509_STORE_CTX get_crl pointer blob | commitdiff | raw | diff to current
2016-01-07  Viktor DukhovniDANE support for X509_verify_cert() blob | commitdiff | raw | diff to current
2016-01-06  Viktor DukhovniDANE support structures, constructructors and accessors blob | commitdiff | raw | diff to current
2016-01-03  Viktor DukhovniFix X509_STORE_CTX_cleanup() blob | commitdiff | raw | diff to current
2016-01-03  Viktor DukhovniX509_verify_cert() cleanup blob | commitdiff | raw | diff to current
2015-12-14  Dr. Stephen HensonNew function X509_get0_pubkey blob | commitdiff | raw | diff to current
2015-12-01  Rich Salzex_data part 2: doc fixes and CRYPTO_free_ex_index. blob | commitdiff | raw | diff to current
2015-11-26  Dr. Stephen HensonRemove X509_VERIFY_PARAM_ID blob | commitdiff | raw | diff to current
2015-11-09  Matt CaswellContinue standardising malloc style for libcrypto blob | commitdiff | raw | diff to current
2015-10-15  Dr. Stephen Hensonembed CRL serial number and signature fields blob | commitdiff | raw | diff to current
2015-09-05  mrpreIn X509_STORE_CTX_init, cleanup on failure blob | commitdiff | raw | diff to current
2015-09-05  David WoodhouseRT3951: Add X509_V_FLAG_NO_CHECK_TIME to suppress time... blob | commitdiff | raw | diff to current
2015-09-03  David WoodhouseRevert "OPENSSL_NO_xxx cleanup: RFC3779" blob | commitdiff | raw | diff to current
2015-09-03  Rich SalzAdd and use OPENSSL_zalloc blob | commitdiff | raw | diff to current
2015-09-02  Dr. Stephen Hensonmake X509_CRL opaque blob | commitdiff | raw | diff to current
2015-09-02  Viktor DukhovniBetter handling of verify param id peername field blob | commitdiff | raw | diff to current
2015-08-31  Dr. Stephen HensonAdd X509_up_ref function. blob | commitdiff | raw | diff to current
2015-08-31  Dr. Stephen HensonAdd X509_CRL_up_ref function blob | commitdiff | raw | diff to current
2015-08-28  Alessandro GhediniGH354: Memory leak fixes blob | commitdiff | raw | diff to current
2015-08-13  Ismo PuustinenGH364: Free memory on an error path blob | commitdiff | raw | diff to current
2015-08-10  Rich SalzRT3999: Remove sub-component version strings blob | commitdiff | raw | diff to current
2015-07-07  Matt CaswellExtend -show_chain option to verify to show more info blob | commitdiff | raw | diff to current
2015-07-07  Matt CaswellReject calls to X509_verify_cert that have not been... blob | commitdiff | raw | diff to current
2015-07-07  Matt CaswellFix alternate chains certificate forgery issue blob | commitdiff | raw | diff to current
2015-06-11  Emilia KasperFix length checks in X509_cmp_time to avoid out-of... blob | commitdiff | raw | diff to current
2015-05-14  Richard LevitteIdentify and move common internal libcrypto header... blob | commitdiff | raw | diff to current
2015-05-06  Gunnar KudrjavetsInitialize potentially uninitialized local variables blob | commitdiff | raw | diff to current
2015-05-06  Rich Salzmemset, memcpy, sizeof consistency fixes blob | commitdiff | raw | diff to current
2015-05-04  Rich SalzUse safer sizeof variant in malloc blob | commitdiff | raw | diff to current
2015-05-01  Rich Salzfree NULL cleanup -- coda blob | commitdiff | raw | diff to current
2015-05-01  Rich SalzRemove goto inside an if(0) block blob | commitdiff | raw | diff to current
2015-04-30  Rich Salzfree NULL cleanup 5a blob | commitdiff | raw | diff to current
2015-04-28  Rich Salzremove malloc casts blob | commitdiff | raw | diff to current
2015-03-28  Rich Salzfree NULL cleanup blob | commitdiff | raw | diff to current
2015-03-24  Dr. Stephen HensonFix verify algorithm. blob | commitdiff | raw | diff to current
2015-02-25  Matt CaswellAdd flag to inhibit checking for alternate certificate... blob | commitdiff | raw | diff to current
2015-02-25  Matt CaswellIn certain situations the server provided certificate... blob | commitdiff | raw | diff to current
2015-02-09  Dr. Stephen HensonRemove obsolete IMPLEMENT_ASN1_SET_OF blob | commitdiff | raw | diff to current
2015-02-08  Rich SalzFinal (for me, for now) dead code cleanup blob | commitdiff | raw | diff to current
2015-02-06  Rich Salzutil/mkstack.pl now generates entire safestack.h blob | commitdiff | raw | diff to current
2015-01-27  Rich SalzOPENSSL_NO_xxx cleanup: RFC3779 blob | commitdiff | raw | diff to current
2015-01-27  Rich SalzOPENSSL_NO_xxx cleanup: many removals blob | commitdiff | raw | diff to current
2015-01-22  Matt CaswellMore comment realignment master-post-reformat blob | commitdiff | raw | diff to current
2015-01-22  Matt CaswellRun util/openssl-format-source -v -c . blob | commitdiff | raw | diff to current
2015-01-22  Matt CaswellFurther comment changes for reformat (master) blob | commitdiff | raw | diff to current
2015-01-06  Matt CaswellFurther comment amendments to preserve formatting prior... blob | commitdiff | raw | diff to current
2014-09-08  Paul SuhlerRT2841: Extra return in check_issued blob | commitdiff | raw | diff to current
2014-08-15  Rich SalzRT2751: Declare get_issuer_sk() earlier. blob | commitdiff | raw | diff to current
2014-07-07  Viktor DukhovniUpdate API to use (char *) for email addresses and... blob | commitdiff | raw | diff to current
2014-07-05  Viktor DukhovniSet optional peername when X509_check_host() succeeds. blob | commitdiff | raw | diff to current
2014-06-23  Viktor DukhovniOne more typo when changing !result to result <= 0 blob | commitdiff | raw | diff to current
2014-06-23  Viktor DukhovniFix typo in last commit blob | commitdiff | raw | diff to current
2014-06-23  Viktor DukhovniMultiple verifier reference identities. blob | commitdiff | raw | diff to current
2014-06-23  Viktor DukhovniX509_check_mumble() failure is <= 0, not just 0 blob | commitdiff | raw | diff to current
2014-06-22  Viktor DukhovniDrop hostlen from X509_VERIFY_PARAM_ID. blob | commitdiff | raw | diff to current
2014-05-25  Dr. Stephen HensonDon't use expired certificates if possible. blob | commitdiff | raw | diff to current
2014-05-25  Dr. Stephen HensonRename vpm_int.h to x509_lcl.h blob | commitdiff | raw | diff to current
2014-05-21  Viktor DukhovniFixes to host checking. blob | commitdiff | raw | diff to current
2014-03-03  Dr. Stephen HensonFor self signed root only indicate one error. blob | commitdiff | raw | diff to current
2014-02-14  Dr. Stephen HensonInclude TA in checks/callback with partial chains. blob | commitdiff | raw | diff to current
2014-02-14  Dr. Stephen HensonDon't do loop detection for self signed check. blob | commitdiff | raw | diff to current
2014-01-09  Dr. Stephen HensonFix bug in X509_V_FLAG_IGNORE_CRITICAL CRL handling. blob | commitdiff | raw | diff to current
2013-12-13  Dr. Stephen HensonAdd opaque ID structure. blob | commitdiff | raw | diff to current
2013-12-13  Dr. Stephen HensonFix for partial chain notification. blob | commitdiff | raw | diff to current
next
A mirror of the official openssl repository