| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | check_chain_extensions(): Require X.509 v3 if extensions are present | Dr. David von Oheimb | 2020-09-11 | 2 | -0/+6 |
| * | check_chain_extensions(): Change exclusion condition w.r.t. RFC 6818 section 2 | Dr. David von Oheimb | 2020-09-11 | 1 | -2/+5 |
| * | x509_vfy.c: Make sure that strict checks are not done for self-issued EE certs | Dr. David von Oheimb | 2020-09-11 | 1 | -6/+9 |
| * | check_chain_extensions(): Add check that CA cert includes key usage extension | Dr. David von Oheimb | 2020-09-11 | 2 | -4/+10 |
| * | check_chain_extensions(): Add check that on empty Subject the SAN must be mar... | Dr. David von Oheimb | 2020-09-11 | 3 | -6/+9 |
| * | check_chain_extensions(): Add check that AKID and SKID are not marked critical | Dr. David von Oheimb | 2020-09-11 | 3 | -7/+25 |
| * | check_chain_extensions(): Add check that Basic Constraints of CA cert are mar... | Dr. David von Oheimb | 2020-09-11 | 3 | -2/+13 |
| * | Extend X509 cert checks and error reporting in v3_{purp,crld}.c and x509_{set... | Dr. David von Oheimb | 2020-09-11 | 7 | -86/+234 |
| * | X509_NAME_cmp: restrict normal return values to {-1,0,1} to avoid confusion w... | Dr. David von Oheimb | 2020-09-10 | 1 | -19/+19 |
| * | X509_NAME_oneline(): Fix output of multi-valued RDNs, escaping '/' and '+' in... | Dr. David von Oheimb | 2020-09-10 | 1 | -10/+16 |
| * | X509_STORE_CTX_print_verify_cb(): add AKID and SKID output for (non-)trusted ... | Dr. David von Oheimb | 2020-09-05 | 2 | -7/+21 |
| * | STORE: Move the built-in 'file:' loader to become an engine module | Richard Levitte | 2020-09-03 | 1 | -1/+1 |
| * | RFC 8398: EAI comparison | Dmitry Belyavskiy | 2020-08-26 | 1 | -2/+16 |
| * | RFC 8398: Name constraints validation | Dmitry Belyavskiy | 2020-08-26 | 1 | -5/+68 |
| * | crypto/x509/v3_utl.c: Fix IPv6 output in ipaddr_to_asc() | Richard Levitte | 2020-08-26 | 1 | -3/+11 |
| * | STORE: Modify to support loading with provider based loaders | Richard Levitte | 2020-08-24 | 1 | -0/+9 |
| * | Rename OSSL_SERIALIZER / OSSL_DESERIALIZER to OSSL_ENCODE / OSSL_DECODE | Richard Levitte | 2020-08-21 | 1 | -13/+13 |
| * | Add libctx and propq param to ASN.1 sign/verify/HMAC/decrypt | Dr. David von Oheimb | 2020-08-21 | 1 | -60/+7 |
| * | x_x509.c: Simplify X509_new_with_libctx() using x509_set0_libctx() | Dr. David von Oheimb | 2020-08-21 | 1 | -4/+1 |
| * | Make sure x509v3_cache_extensions() does not modify the error queue | Dr. David von Oheimb | 2020-08-21 | 1 | -0/+2 |
| * | X509: Add d2i_PUBKEY_ex(), which take a libctx and propq | Richard Levitte | 2020-08-20 | 1 | -8/+47 |
| * | Remove needless #ifndef OPENSSL_NO_SOCK for X509_{CRL_}load_http | Dr. David von Oheimb | 2020-08-13 | 1 | -4/+0 |
| * | Introduce X509_add_cert[s] simplifying various additions to cert lists | Dr. David von Oheimb | 2020-08-12 | 3 | -48/+66 |
| * | Add libctx support to PKCS7. | Shane Lontis | 2020-08-09 | 1 | -2/+13 |
| * | Add internal method x509_set0_libctx(). | Shane Lontis | 2020-08-09 | 1 | -0/+14 |
| * | Update copyright year | Matt Caswell | 2020-08-06 | 1 | -1/+1 |
| * | Add 'section=...' info in error output of X509V3_EXT_nconf() as far as approp... | Dr. David von Oheimb | 2020-08-04 | 1 | -12/+31 |
| * | Rename misleading X509V3_R_INVALID_NULL_NAME to X509V3_R_INVALID_EMPTY_NAME | Dr. David von Oheimb | 2020-08-04 | 2 | -5/+5 |
| * | Correct confusing X509V3 conf error output by removing needless 'section:<NUL... | Dr. David von Oheimb | 2020-08-04 | 13 | -33/+46 |
| * | Coverity Fixes for issue #12531 | Norman Ashley | 2020-08-04 | 1 | -0/+1 |
| * | Add X509 related libctx changes. | Shane Lontis | 2020-07-24 | 10 | -150/+276 |
| * | x509_vfy.c: Improve key usage checks in internal_verify() of cert chains | Dr. David von Oheimb | 2020-07-16 | 2 | -15/+41 |
| * | Constify X509_check_akid and prefer using X509_get0_serialNumber over X509_ge... | Dr. David von Oheimb | 2020-07-16 | 4 | -6/+5 |
| * | X509v3_cache_extensions(): Improve coding style and doc, fix case 'sha1 == NULL' | Dr. David von Oheimb | 2020-07-01 | 1 | -26/+39 |
| * | Add X509_self_signed(), extending and improving documenation and tests | Dr. David von Oheimb | 2020-07-01 | 1 | -16/+33 |
| * | Fix issue 1418 by moving check of KU_KEY_CERT_SIGN and weakening check_issued() | Dr. David von Oheimb | 2020-07-01 | 2 | -24/+18 |
| * | Optimization and safety precaution in find_issuer() of x509_vfy.c: | Dr. David von Oheimb | 2020-07-01 | 1 | -1/+5 |
| * | Refactor (without semantic changes) crypto/x509/{v3_purp.c,x509_vfy.c} | Dr. David von Oheimb | 2020-07-01 | 4 | -55/+77 |
| * | Improve documentation, layout, and code comments regarding self-issued certs ... | Dr. David von Oheimb | 2020-07-01 | 3 | -37/+40 |
| * | Update copyright year | Matt Caswell | 2020-06-04 | 1 | -1/+1 |
| * | undeprecate SSL_CTX_load_verify_locations and X509_STORE_load_locations | Tim Hudson | 2020-06-01 | 1 | -3/+0 |
| * | Rename EVP_PKEY_cmp() to EVP_PKEY_eq() and EVP_PKEY_cmp_parameters() to EVP_P... | Dr. David von Oheimb | 2020-05-27 | 3 | -3/+3 |
| * | Fix X509_PUBKEY_cmp(), move to crypto/x509/x_pubkey.c, rename, export, and do... | Dr. David von Oheimb | 2020-05-26 | 1 | -0/+21 |
| * | Constify X509_PUBKEY_get(), X509_PUBKEY_get0(), and X509_PUBKEY_get0_param() | Dr. David von Oheimb | 2020-05-26 | 1 | -5/+5 |
| * | Coverity 1463830: Resource leaks (RESOURCE_LEAK) | Pauli | 2020-05-25 | 1 | -0/+1 |
| * | Adjust length of some strncpy() calls | Nicola Tuveri | 2020-05-22 | 1 | -1/+1 |
| * | Coverity 1463258: Incorrect expression (EVALUATION_ORDER) | Pauli | 2020-05-22 | 1 | -1/+1 |
| * | Fix some places where X509_up_ref is used | Bernd Edlinger | 2020-05-18 | 3 | -18/+45 |
| * | Update copyright year | Matt Caswell | 2020-05-15 | 31 | -31/+31 |
| * | Strengthen X509_STORE_CTX_print_verify_cb() to print expected host etc. | Dr. David von Oheimb | 2020-05-05 | 6 | -91/+157 |
