aboutsummaryrefslogtreecommitdiffstats
path: root/crypto/x509/x509_err.c
Commit message (Collapse)AuthorAgeFilesLines
* Make many X509_xxx types opaque.Rich Salz2016-04-151-0/+2
| | | | | | | | | Make X509_OBJECT, X509_STORE_CTX, X509_STORE, X509_LOOKUP, and X509_LOOKUP_METHOD opaque. Remove unused X509_CERT_FILE_CTX Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
* Fix X509_PUBKEY cached key handling.Dr. Stephen Henson2016-04-021-1/+2
| | | | | | | Don't decode a public key in X509_PUBKEY_get0(): that is handled when the key is parsed using x509_pubkey_decode() instead. Reviewed-by: Emilia Käsper <emilia@openssl.org>
* Remove /* foo.c */ commentsRich Salz2016-01-261-1/+0
| | | | | | | | | | | | This was done by the following find . -name '*.[ch]' | /tmp/pl where /tmp/pl is the following three-line script: print unless $. == 1 && m@/\* .*\.[ch] \*/@; close ARGV if eof; # Close file to reset $. And then some hand-editing of other files. Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
* DANE support for X509_verify_cert()Viktor Dukhovni2016-01-071-0/+2
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* X509_verify_cert() cleanupViktor Dukhovni2016-01-031-0/+1
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* New function X509_get0_pubkeyDr. Stephen Henson2015-12-141-1/+1
| | | | Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
* Rebuild error source files.Dr. Stephen Henson2015-11-051-6/+6
| | | | | | | Rebuild error source files: the new mkerr.pl functionality will now pick up and translate static function names properly. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Run util/openssl-format-source -v -c .Matt Caswell2015-01-221-98/+112
| | | | Reviewed-by: Tim Hudson <tjh@openssl.org>
* initial support for delta CRL generations by diffing two full CRLsDr. Stephen Henson2012-12-041-1/+9
|
* Update from 0.9.8 stable. Eliminate duplicate error codes.Dr. Stephen Henson2006-11-211-7/+4
|
* Initial support for pluggable public key ASN1 support. Process most publicDr. Stephen Henson2006-03-201-0/+3
| | | | | | key ASN1 handling through a single EVP_PKEY_ASN1_METHOD structure and move the spaghetti algorithm specific code to a single ASN1 module for each algorithm.
* Fix more error codes.Bodo Möller2005-05-111-3/+6
| | | | | (Also improve util/ck_errf.pl script, and occasionally fix source code formatting.)
* Rebuild error codes.Dr. Stephen Henson2005-04-121-68/+72
|
* Add functionality to help making self-signed certificate.Richard Levitte2003-04-031-1/+2
|
* Make the necessary changes to work with the recent "ex_data" overhaul.Geoff Thorpe2001-09-011-0/+2
| | | | | | | | | | | See the commit log message for that for more information. NB: X509_STORE_CTX's use of "ex_data" support was actually misimplemented (initialisation by "memset" won't/can't/doesn't work). This fixes that but requires that X509_STORE_CTX_init() be able to handle errors - so its prototype has been changed to return 'int' rather than 'void'. All uses of that function throughout the source code have been tracked down and adjusted.
* Purpose and trust setting functions for X509_STORE.Dr. Stephen Henson2001-05-101-0/+2
| | | | Tidy existing code.
* Make all configuration macros available for application by makingRichard Levitte2001-02-191-2/+2
| | | | | | | | | | | | sure they are available in opensslconf.h, by giving them names starting with "OPENSSL_" to avoid conflicts with other packages and by making sure e_os2.h will cover all platform-specific cases together with opensslconf.h. I've checked fairly well that nothing breaks with this (apart from external software that will adapt if they have used something like NO_KRB5), but I can't guarantee it completely, so a review of this change would be a good thing.
* Preserve reason strings in automatically build tables.Bodo Möller2000-03-051-1/+2
|
* Rename functions for new convention.Dr. Stephen Henson2000-02-261-2/+2
|
* Finish off the X509_ATTRIBUTE string stuff.Dr. Stephen Henson2000-01-201-2/+2
|
* Rename X509_att*() stuff to X509at_*(), add X509_REQ wrappers.Dr. Stephen Henson2000-01-191-0/+1
|
* Precautions against using the PRNG uninitialized: RAND_bytes() nowUlf Möller2000-01-131-1/+1
| | | | | | returns int (1 = ok, 0 = not seeded). New function RAND_add() is the same as RAND_seed() but takes an estimate of the entropy as an additional argument.
* Initial automation changes to 'req' and X509_ATTRIBUTE functions.Dr. Stephen Henson2000-01-061-0/+6
|
* Add part of chain verify SSL support code: not complete or doing anythingDr. Stephen Henson1999-11-291-1/+2
| | | | | | | | | | | yet. Add a function X509_STORE_CTX_purpose_inherit() which implements the logic of "inheriting" purpose and trust from a parent structure and using a default: this will be used in the SSL code and possibly future S/MIME. Partial documentation of the 'verify' utility. Still need to document how all the extension checking works and the various error messages.
* Add trust setting support to the verify code. It now checks theDr. Stephen Henson1999-11-271-1/+3
| | | | | | | | trust settings of the root CA. After a few fixes it seems to work OK. Still need to add support to SSL and S/MIME code though.
* Initial trust code: allow setting of trust checking functionsDr. Stephen Henson1999-11-271-0/+1
| | | | | | | | | | | | | in a table. Doesn't do too much yet. Make the -<digestname> options in 'x509' affect all relevant options. Change the name of the 'notrust' options to 'reject' as this causes less confusion and is a better description of the effect. A few constification changes.
* Transparent support for PKCS#8 private keys in RSA/DSA.Dr. Stephen Henson1999-11-211-0/+1
| | | | | | | | New universal public key format. Fix CRL+cert load problem in by_file.c Make verify report errors when loading files or dirs
* Continued multibyte character support.Dr. Stephen Henson1999-10-271-0/+2
| | | | | | | Add a bunch of functions to simplify the creation of X509_NAME structures. Change the X509_NAME_entry_add stuff in req/ca so it no longer uses X509_NAME_entry_count(): passing -1 has the same effect.
* Add new 'spkac' utility and several SPKAC utility functions.Dr. Stephen Henson1999-09-031-0/+3
|
* Complete rewrite of the error code generation script. It now runs as a singleDr. Stephen Henson1999-04-241-57/+59
| | | | | | | script, translates function codes better and doesn't need the K&R function prototypes to work (NB. the K&R prototypes can't be wiped just yet: they are still needed by the DEF generator...). I also ran the script with the -rewrite option to update all the header and source files.
* Change #include filenames from <foo.h> to <openssl.h>.Bodo Möller1999-04-231-2/+2
| | | | | | Submitted by: Reviewed by: PR:
* Change functions to ANSI C.Ulf Möller1999-04-191-1/+1
|
* Delete all the old X509V3 pack and unpack stuff and various structures andDr. Stephen Henson1999-04-131-4/+0
| | | | files associated with them. This stuff is all obsoleted by the new X509V3 code.
* Generate errors when public/private key check is done.Ben Laurie1999-02-201-0/+5
|
* This is the result of a "make errors" with the new error building functionalityDr. Stephen Henson1999-01-181-0/+1
| | | | in place.
* Import of old SSLeay release: SSLeay 0.9.1b (unreleased)Ralf S. Engelschall1998-12-211-2/+2
|
* Import of old SSLeay release: SSLeay 0.9.0bRalf S. Engelschall1998-12-211-2/+11
|
* Import of old SSLeay release: SSLeay 0.8.1bRalf S. Engelschall1998-12-211-0/+121
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-14 02:28:27 +0000