aboutsummaryrefslogtreecommitdiffstats
path: root/crypto/x509v3
Commit message (Collapse)AuthorAgeFilesLines
* Beautifying code.Richard Levitte2000-03-251-2/+2
|
* New compatability trust and purpose settings.Dr. Stephen Henson2000-03-072-2/+10
|
* Preserve reason strings in automatically build tables.Bodo Möller2000-03-051-1/+2
|
* More get0 et al. changes. Also provide fgrep targets in CHANGESBodo Möller2000-02-262-5/+5
| | | | where the new functions are mentioned.
* Rename functions for new convention.Dr. Stephen Henson2000-02-262-4/+4
|
* Modernise 'selfsign.c' to use new X509_NAME codeDr. Stephen Henson2000-02-131-1/+1
| | | | | and add example of extension aliasing. Also fix the extension aliasing because it didn't work :-)
* Make gcc 2.95.2 happy again, even under ``-Wall -Wshadow -Wpointer-arith ↵Ralf S. Engelschall2000-02-112-2/+2
| | | | | | -Wcast-align -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -Winline''.
* Rename the X509V3_*_d2i functions to X509_get_ext_d2i() etc.Dr. Stephen Henson2000-02-073-24/+4
| | | | This better reflects their behaviour.
* EBCDIC support.Ulf Möller2000-02-012-0/+19
| | | | Submitted by: Martin Kraemer <martin.kraemer@mch.sni.de>
* Seek out and destroy another evil cast.Ulf Möller2000-01-307-9/+9
|
* Some more ifdefs for no-xxx options.Ulf Möller2000-01-211-0/+2
|
* Avoid converting void * to a function pointer when NULL is defined asRichard Levitte2000-01-182-2/+2
| | | | ((void *)0), by have a 0 instead.
* #undef PKCS7_SIGNER_INFO for Win32 to avoid clashes.Dr. Stephen Henson2000-01-072-6/+8
| | | | | Fix so CRLDistributionPoints relativeName option uses the correct type.
* Simplify the trust structure: basically zap the bit strings andDr. Stephen Henson1999-12-291-1/+0
| | | | represent everything by OIDs.
* Fix a bug in the modified purpose code: it wasn't updated to use theDr. Stephen Henson1999-12-031-1/+1
| | | | | | | new purpose getting function. Update the ca-cert.pem and pca-cert.pem "CA" certificates so they really are CA certificate: that is they have the appropriate extensions.
* Change the trust and purpose code so it doesn't need initDr. Stephen Henson1999-12-024-32/+72
| | | | either and has a static and dynamic mix.
* Modify the X509 V3 extension lookup code.Dr. Stephen Henson1999-12-014-28/+197
|
* Add part of chain verify SSL support code: not complete or doing anythingDr. Stephen Henson1999-11-292-20/+20
| | | | | | | | | | | yet. Add a function X509_STORE_CTX_purpose_inherit() which implements the logic of "inheriting" purpose and trust from a parent structure and using a default: this will be used in the SSL code and possibly future S/MIME. Partial documentation of the 'verify' utility. Still need to document how all the extension checking works and the various error messages.
* Add trust setting support to the verify code. It now checks theDr. Stephen Henson1999-11-272-1/+6
| | | | | | | | trust settings of the root CA. After a few fixes it seems to work OK. Still need to add support to SSL and S/MIME code though.
* New options to the -verify program which can be used for chain verification.Dr. Stephen Henson1999-11-262-36/+67
| | | | | | | | Extend the X509_PURPOSE structure to include shortnames for purposed and default trust ids. Still need some extendable trust checking code and integration with the SSL and S/MIME code.
* Support for authority information access extension.Dr. Stephen Henson1999-11-235-3/+287
| | | | Fix so EVP_PKEY_rset_*() check return codes.
* Support for otherName in GeneralName.Dr. Stephen Henson1999-11-192-6/+71
|
* New function X509_cmp().Dr. Stephen Henson1999-11-161-1/+3
|
* Allow additional information to be attached to aDr. Stephen Henson1999-11-042-9/+3
| | | | | certificate: currently this includes trust settings and a "friendly name".
* Improve support for running everything as a monolithic application.Bodo Möller1999-10-253-15/+53
| | | | Submitted by: Lennart Bång, Bodo Möller
* Replace the macros in asn1.h with function equivalents. Also make UTF8StringsDr. Stephen Henson1999-10-2017-96/+77
| | | | tolerated in certificates.
* Initial support for certificate purpose checking: this willDr. Stephen Henson1999-10-133-2/+425
| | | | | ultimately lead to certificate chain verification. It is VERY EXPERIMENTAL at present though.
* Add EX_DATA support to X509.Dr. Stephen Henson1999-10-111-1/+1
| | | | Fix a bug in the X509_get_d2i() functions which didn't check if crit was NULL.
* New functions to parse and get extensions.Dr. Stephen Henson1999-10-092-0/+75
|
* Allow extensions to be added to certificate requests, update the sampleDr. Stephen Henson1999-08-252-1/+26
| | | | config file (change RAW to DER).
* A few more ``#ifndef NO_FP_API / #endif'' pairs for consistency.Ralf S. Engelschall1999-08-081-0/+2
| | | | Hint from: Andrija Antonijevic <TheAntony2@bigfoot.com>
* avoid some NO_<cipher> problemsBodo Möller1999-08-021-1/+1
|
* SXnet code was freeing up the extension data rather than the temporaryDr. Stephen Henson1999-07-101-2/+2
| | | | zone number.
* Implement STACK_OF(ANS1_OBJECT) for extended key usage extension, change theDr. Stephen Henson1999-06-2113-74/+82
| | | | | documentation to reflect the STACK_OF(CONF_VALUE) change to the CONF lib and use ANSI typedefs for X509V3_EXT_I2D and X509V3_EXT_FREE.
* "make update"Bodo Möller1999-06-211-25/+30
|
* Convert the CONF library to use a typesafe stack: a STACK_OF(CONF_VALUE). ItDr. Stephen Henson1999-06-2011-113/+136
| | | | | | seemed like a good idea at the time... several hours later it was rather obvious that these are used all over the place making the changes rather extensive.
* Document the X509V3 code and change some of the extension function pointersDr. Stephen Henson1999-06-111-7/+7
| | | | to use 'void *' rather than 'char *' for an "arbitrary extension".
* Set ext_list to NULL after use.Dr. Stephen Henson1999-05-231-0/+1
|
* It was a very bad idea to use #include "../e_os.h" -- when this occursBodo Möller1999-05-211-194/+201
| | | | | | | | | | in cryptlib.h (which is often included as "../cryptlib.h"), then the question remains relative to which directory this is to be interpreted. gcc went one further directory up, as intended; but makedepend thinks differently, and so probably do some C compilers. So the ../ must go away; thus e_os.h goes back into include/openssl (but I now use #include "openssl/e_os.h" instead of <openssl/e_os.h> to make the point) -- and we have another huge bunch of dependency changes. Argh.
* Don't install e_os.h in include/openssl, use it only as a localBodo Möller1999-05-201-201/+194
| | | | include file.
* Various clarifications to extension docs: change the name of literalDr. Stephen Henson1999-05-171-1/+1
| | | | | | extensions from RAW to DER to avoid confusion with raw extensions. Update NEWS file.
* Update dependencies.Bodo Möller1999-05-151-181/+188
|
* Update dependencies.Ben Laurie1999-05-131-11/+12
|
* The various character predicates (isspace and the like) may not beBodo Möller1999-05-102-4/+4
| | | | | | | | | | | used with negative char values, so I've added casts to unsigned char. Maybe what really should be done is change all those arrays and pointers to type unsigned char [] or unsigned char *, respectively; but using plain char with those predicates is just wrong, so something had to be done. Submitted by: Reviewed by: PR:
* Fix various things to let OpenSSL even pass ``egcc -pipe -O2 -Wall -WshadowRalf S. Engelschall1999-05-103-2/+5
| | | | | -Wpointer-arith -Wcast-align -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -Winline'' with EGCS 1.1.2+
* Kill evil casts, fix PKCS#7 and add new X509V3 Function.Dr. Stephen Henson1999-05-095-13/+46
|
* Allows PKCS#12 password to be placed on command line and add allow configDr. Stephen Henson1999-05-081-9/+14
| | | | file name for 'ca' to come from the environment.
* Support INSTALL_PREFIX for packagers.Bodo Möller1999-04-291-2/+4
| | | | | | Submitted by: Reviewed by: PR:
* Ignore Makefile.saveUlf Möller1999-04-291-0/+1
| | | | Submitted by: Anonymous
* Obey $(PERL) when running util/mklink.pl.Bodo Möller1999-04-291-3/+3
| | | | | | Submitted by: Reviewed by: PR:
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-20 09:21:27 +0000