aboutsummaryrefslogtreecommitdiffstats
path: root/crypto/x509/x509_vfy.c
Commit message (Expand)AuthorAgeFilesLines
* Add X509_STORE_CTX_set_get_crl and X509_STORE_CTX_set_current_reasonsvl-loz2023-08-171-0/+12
* Fix checking return code of EVP_PKEY_get_int_param at check_curvePetr Mikhalicin2023-04-211-1/+1
* RFC7250 (RPK) supportTodd Short2023-03-281-19/+197
* Ensure that EXFLAG_INVALID_POLICY is checked even in leaf certsMatt Caswell2023-03-281-2/+10
* Stop raising ERR_R_MALLOC_FAILURE in most placesRichard Levitte2022-10-051-34/+56
* X509_STORE_CTX_set_default(): improve error handling, also in its useDavid von Oheimb2022-09-161-13/+7
* Moving notify check after the no time checkRyan Kelley2022-08-231-2/+2
* x509_lu.c and x509_vfy.c: improve coding style, comments, and related docDr. David von Oheimb2022-07-261-14/+17
* crypto/x509/x509_vfy.c: Improve coding styleDr. David von Oheimb2022-07-131-14/+12
* x509_vfy.c: Revert the core of #14094 regarding chain_build() error reportingDr. David von Oheimb2022-07-121-5/+0
* X509{,_LOOKUP}: Improve distinction between not found and fatal/internal errorDr. David von Oheimb2022-05-041-10/+27
* Update copyright yearMatt Caswell2022-05-031-1/+1
* Ensure X509_STORE_CTX_purpose_inherit handles a 0 default purposeMatt Caswell2022-01-271-5/+6
* add OSSL_STACK_OF_X509_free() for commonly used patternDr. David von Oheimb2021-12-211-4/+4
* Fix infinite verification loops due to has_san_idTobias Nießen2021-12-141-1/+1
* Fix: invoking X509_self_signed improperlyPW Hu2021-11-091-2/+2
* fix some code with obvious wrong coding stylex20182021-10-281-1/+1
* Prioritise DANE TLSA issuer certs over peer certsViktor Dukhovni2021-09-031-8/+12
* cross-reference the DH and RSA SECLEVEL to level of security mappingsHubert Kario2021-06-231-0/+4
* Improve the documentation of cert path building and validationDr. David von Oheimb2021-06-081-1/+2
* x509_vfy.c: Improve a couple of internally documenting commentsDr. David von Oheimb2021-06-081-7/+10
* x509: remove TODOsPauli2021-06-021-4/+3
* Rename all getters to use get/get0 in nameTomas Mraz2021-06-011-2/+2
* Teach EVP_PKEYs to say whether they were decoded from explicit paramsMatt Caswell2021-05-311-5/+6
* X509 build_chain(): Fix two potential memory leaks on issuer variableDr. David von Oheimb2021-05-191-6/+8
* X509 build_chain(): Make the variable 'curr' local to the loop bodyDr. David von Oheimb2021-05-191-9/+4
* X509 build_chain(): Rename variable 'depth' to 'max_depth'Dr. David von Oheimb2021-05-191-7/+7
* X509 build_chain(): Restrict scope of 'self_signed' variableDr. David von Oheimb2021-05-191-10/+9
* Add X509 version constants.David Benjamin2021-04-281-2/+2
* Improve ossl_cmp_build_cert_chain(); publish it as X509_build_chain()Dr. David von Oheimb2021-04-201-0/+42
* Fix more certificate related lib_ctx settings.Shane Lontis2021-04-081-1/+1
* Add ossl_ x509 symbolsShane Lontis2021-03-181-9/+9
* Add ossl_asn1 symbolsShane Lontis2021-03-181-1/+1
* Code cleanup mostly in crypto/x509/v3_purp.cDr. David von Oheimb2021-02-271-3/+3
* Rename internal X509_add_cert_new() to ossl_x509_add_cert_new()Dr. David von Oheimb2021-02-181-1/+1
* chain_build(): Call verify_cb_cert() if a preliminary error has become finalDr. David von Oheimb2021-02-181-5/+12
* x509_vfy: fix mem leaks in chain_build() on malloc error Coverify CID 1473068Dr. David von Oheimb2021-02-171-7/+5
* x509_vfy: remove redundant stack allocationBenjamin Kaduk2021-02-151-9/+1
* X509_STORE_CTX_cleanup(): Use internally so no need to call explicitlyDr. David von Oheimb2021-02-111-3/+9
* x509_vfy.c: Make chain_build() error diagnostics to the pointDr. David von Oheimb2021-02-111-10/+31
* x509_vfy.c: Sort out return values 0 vs. -1 (failure/internal error)Dr. David von Oheimb2021-02-091-73/+104
* X509_get_pubkey_parameters(): Correct failure behavior and its useDr. David von Oheimb2021-02-091-13/+12
* x509_vfy.c: Fix various coding style and documentation style nitsDr. David von Oheimb2021-02-091-11/+11
* Add X509_STORE_CTX_verify(), which takes the first untrusted cert as default ...Dr. David von Oheimb2021-02-061-2/+16
* x509_vfy.c: Improve coding style and comments all over the fileDr. David von Oheimb2021-02-041-379/+301
* Allow NULL arg to OPENSSL_sk_{dup,deep_copy} returning empty stackDr. David von Oheimb2021-02-041-1/+1
* Update copyright yearRichard Levitte2021-01-281-1/+1
* Deprecate EC_KEY + Update ec apps to use EVP_PKEYShane Lontis2021-01-261-0/+2
* x509_vfy.c: Rename CHECK_CB() to the more intuitively readable CB_FAIL_IF()Dr. David von Oheimb2021-01-201-137/+106
* find_issuer(): When returning an expired issuer, take the most recently expir...Dr. David von Oheimb2021-01-141-5/+7
generated by cgit v1.2.3 (git 2.39.1) at 2024-10-01 04:07:23 +0000