index
:
openssl.git
OpenSSL_0_9_6-stable
OpenSSL_0_9_7-stable
OpenSSL_0_9_8-stable
OpenSSL_1_0_0-stable
OpenSSL_1_0_1-stable
OpenSSL_1_0_2-stable
OpenSSL_1_1_0-stable
feature/SSL_CTX_get_ciphers
fix-ssl_next_proto_validate
fix/EC_KEY_set_private_key-null
fix/x509-store-ex-data
fix/x509-store-remove-old
ky/bn-print-fix
ky/pem-read-fix-unsigned-cast
ky/ssl-fix-get-session-cb
master
topic/SSL_get_max_early_data-typofix
topic/X509_load_cert_crl_file-errorleakfix
topic/bn-bn2dec-fix
topic/chacha20-flags
topic/ec-group-get-ecparameters-memory-leak
topic/evp-chacha20-poly1305-cleanup-typofix
topic/evp-chacha20-poly1305-init-segv
topic/fix-asn1-integer-decode
topic/fix-config-parse-oid_section
rhe's working repository
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
crypto
/
x509
/
x509_vfy.c
Commit message (
Expand
)
Author
Age
Files
Lines
*
Rename some lowercase API's
Rich Salz
2016-04-18
1
-2
/
+2
*
Add X509_STORE_CTX_set0_untrusted function.
Dr. Stephen Henson
2016-04-16
1
-0
/
+5
*
Make many X509_xxx types opaque.
Rich Salz
2016-04-15
1
-9
/
+35
*
Add SSL_DANE typedef for consistency.
Rich Salz
2016-04-08
1
-9
/
+9
*
Move peer chain security checks into x509_vfy.c
Viktor Dukhovni
2016-04-03
1
-26
/
+134
*
Tidy up x509_vfy callback handling
Viktor Dukhovni
2016-04-03
1
-286
/
+217
*
Require intermediate CAs to have basicConstraints CA:true.
Viktor Dukhovni
2016-03-29
1
-1
/
+2
*
Add a comment on dane_verify() logic
Viktor Dukhovni
2016-03-20
1
-1
/
+13
*
Convert CRYPTO_LOCK_X509_* to new multi-threading API
Alessandro Ghedini
2016-03-08
1
-1
/
+2
*
Deprecate the -issuer_checks debugging option
Viktor Dukhovni
2016-02-10
1
-10
/
+1
*
Suppress DANE TLSA reflection when verification fails
Viktor Dukhovni
2016-02-08
1
-5
/
+3
*
GH601: Various spelling fixes.
FdaSilvaYY
2016-02-05
1
-2
/
+2
*
Ensure correct chain depth for policy checks with DANE bare key TA
Viktor Dukhovni
2016-02-05
1
-0
/
+19
*
Long overdue cleanup of X509 policy tree verification
Viktor Dukhovni
2016-02-05
1
-3
/
+7
*
Compat self-signed trust with reject-only aux data
Viktor Dukhovni
2016-01-31
1
-7
/
+19
*
Check chain extensions also for trusted certificates
Viktor Dukhovni
2016-01-31
1
-33
/
+85
*
Remove /* foo.c */ comments
Rich Salz
2016-01-26
1
-1
/
+0
*
Check Suite-B constraints with EE DANE records
Viktor Dukhovni
2016-01-20
1
-24
/
+31
*
Drop cached certificate signature validity flag
Viktor Dukhovni
2016-01-18
1
-5
/
+1
*
Add lookup_certs for a trusted stack.
Dr. Stephen Henson
2016-01-15
1
-0
/
+21
*
Cosmetic polish for last-resort depth 0 check
Viktor Dukhovni
2016-01-14
1
-5
/
+5
*
Fix last-resort depth 0 check when the chain has multiple certificates
Viktor Dukhovni
2016-01-14
1
-4
/
+9
*
Always initialize X509_STORE_CTX get_crl pointer
Viktor Dukhovni
2016-01-14
1
-0
/
+2
*
DANE support for X509_verify_cert()
Viktor Dukhovni
2016-01-07
1
-9
/
+399
*
DANE support structures, constructructors and accessors
Viktor Dukhovni
2016-01-05
1
-0
/
+7
*
Fix X509_STORE_CTX_cleanup()
Viktor Dukhovni
2016-01-03
1
-17
/
+21
*
X509_verify_cert() cleanup
Viktor Dukhovni
2016-01-03
1
-343
/
+396
*
New function X509_get0_pubkey
Dr. Stephen Henson
2015-12-14
1
-14
/
+5
*
ex_data part 2: doc fixes and CRYPTO_free_ex_index.
Rich Salz
2015-12-01
1
-13
/
+0
*
Remove X509_VERIFY_PARAM_ID
Dr. Stephen Henson
2015-11-26
1
-11
/
+10
*
Continue standardising malloc style for libcrypto
Matt Caswell
2015-11-09
1
-2
/
+2
*
embed CRL serial number and signature fields
Dr. Stephen Henson
2015-10-15
1
-1
/
+1
*
In X509_STORE_CTX_init, cleanup on failure
mrpre
2015-09-05
1
-27
/
+33
*
RT3951: Add X509_V_FLAG_NO_CHECK_TIME to suppress time check
David Woodhouse
2015-09-05
1
-0
/
+4
*
Revert "OPENSSL_NO_xxx cleanup: RFC3779"
David Woodhouse
2015-09-03
1
-0
/
+2
*
Add and use OPENSSL_zalloc
Rich Salz
2015-09-02
1
-2
/
+1
*
make X509_CRL opaque
Dr. Stephen Henson
2015-09-02
1
-0
/
+1
*
Better handling of verify param id peername field
Viktor Dukhovni
2015-09-02
1
-0
/
+4
*
Add X509_up_ref function.
Dr. Stephen Henson
2015-08-31
1
-4
/
+4
*
Add X509_CRL_up_ref function
Dr. Stephen Henson
2015-08-31
1
-2
/
+2
*
GH354: Memory leak fixes
Alessandro Ghedini
2015-08-28
1
-2
/
+2
*
GH364: Free memory on an error path
Ismo Puustinen
2015-08-13
1
-1
/
+2
*
RT3999: Remove sub-component version strings
Rich Salz
2015-08-10
1
-1
/
+0
*
Extend -show_chain option to verify to show more info
Matt Caswell
2015-07-07
1
-0
/
+5
*
Reject calls to X509_verify_cert that have not been reinitialised
Matt Caswell
2015-07-07
1
-8
/
+14
*
Fix alternate chains certificate forgery issue
Matt Caswell
2015-07-07
1
-1
/
+1
*
Fix length checks in X509_cmp_time to avoid out-of-bounds reads.
Emilia Kasper
2015-06-11
1
-10
/
+47
*
Identify and move common internal libcrypto header files
Richard Levitte
2015-05-14
1
-1
/
+1
*
Initialize potentially uninitialized local variables
Gunnar Kudrjavets
2015-05-06
1
-4
/
+4
*
memset, memcpy, sizeof consistency fixes
Rich Salz
2015-05-05
1
-6
/
+4
[next]
