summaryrefslogtreecommitdiff
path: root/lib/libcrypto/x509
AgeCommit message (Expand)Author
2017-02-05Kill leak introduced with refactorBob Beck
2017-01-29Send the function codes from the error functions to the bit bucket,Bob Beck
2017-01-21fix bogus commentBob Beck
2017-01-21Make return value of X509_verify_cert be consistent with the error code,Bob Beck
2017-01-20Rework internal_verify, mostly from OpenSSL. so we can progressBob Beck
2017-01-07Add and remove some blank lines, in order to make X509_verify_cert()Joel Sing
2017-01-07Revert part of r1.54 as there are at least two situations where we are stillJoel Sing
2017-01-03Add a small bit of belt and suspenders around ERR_V_OK with X509_STORE_ctxBob Beck
2017-01-03bring in boring's internal check_trust function to fix a bug introducedBob Beck
2016-12-30Expand ASN1_ITEM_rptr macros - no change in generated assembly.Joel Sing
2016-12-27Remove all DECLARE_ASN1_SET_OF macro usage - since 2000 these have beenJoel Sing
2016-12-21Explicitly export a list of symbols from libcrypto.Joel Sing
2016-12-21Remove prototypes from the public header for X509_VERIFY_PARAM functionsJoel Sing
2016-11-13Fix previous change to X509_STORE_add_{cert,crl} to not free the inputMiod Vallat
2016-11-08Check for stack push failure, and correctly destroy the object we failedMiod Vallat
2016-11-06Rework X509_verify_cert to support alt chains on certificate verification,Bob Beck
2016-11-06The upcoming x509 alt chains diff tightens the trust requirementsBob Beck
2016-11-06Commit a reminder that the default is not the default. This needs toBob Beck
2016-11-06use the correct function for freeBrent Cook
2016-11-05Part one of the alt chains changes, bring in newer modifications toBob Beck
2016-11-04make public ASN1_time_parse and ASN1_time_tm_cmp to replace former hiddenBob Beck
2016-11-04Add X509_up_ref, from boringBob Beck
2016-10-02In X509_cmp_time(), pass asn1_time_parse() the tag of the field beingPhilip Guenther
2016-09-04Expand DECLARE_ASN1_.*FUNCTIONS macros.Joel Sing
2016-03-21Return zero from two functions on allocation failure instead of alwaysMichael McConville
2016-03-11X509_free(3) is NULL-safe, so remove NULL checks before its calls.Michael McConville
2015-12-14initialize ok to 0Bob Beck
2015-10-19Stop supporing "legcay" time formats that OpenSSL supports. Rewrite theBob Beck
2015-10-13Convert a number of the old ASN1_{d2i,i2d}_{bio,fp}_of() macros toJoel Sing
2015-10-02Flense the greasy black guts of unreadble string parsing code out of three areasBob Beck
2015-09-30s/M_ASN1_TIME_free/ASN1_TIME_free/Joel Sing
2015-09-30Replace M_ASN1_INTEGER_(new|free) with ASN1_INTEGER_(new|free) - this isJoel Sing
2015-09-14Add support for disabling certificate and CRL validity checking.Joel Sing
2015-09-13Reorder functions for readability/consistency.Joel Sing
2015-07-29Expand obsolete M_ASN1.*(cmp|dup|print|set) macros - no change in generatedJoel Sing
2015-07-19Now that it is safe to invoke X509_STORE_CTX_cleanup() if X509_STORE_CTX_init()Miod Vallat
2015-07-19Simplify X509_STORE_CTX_init and make it safe with stack variables.Doug Hogan
2015-06-13Fix bad indenting in LibreSSL.Doug Hogan
2015-06-11Avoid a potential out-of-bounds read in X509_cmp_time(), due to missingJoel Sing
2015-04-25Don't ignore the reference count in X509_STORE_free.Doug Hogan
2015-04-12Remove d2i_X509_PKEY and i2d_X509_PKEY from the SSLeay days.Doug Hogan
2015-04-11Remove all getenv() calls, especially those wrapped by issetugid().Theo de Raadt
2015-03-15Avoid a NULL pointer deref when X509_get_pubkey() returns NULL.Doug Hogan
2015-02-12If you do not support POSIX I/O then you're not tall enough to ride...Joel Sing
2015-02-11More unifdef OPENSSL_NO_RFC3779 that got missed last time around.Joel Sing
2015-02-10Remove more IMPLEMENT_STACK_OF noops that have been hiding for the lastJoel Sing
2015-02-10The IMPLEMENT_STACK_OF and IMPLEMENT_ASN1_SET_OF macros were turned intoJoel Sing
2015-02-07Delete a lot of #if 0 code in libressl.Doug Hogan
2015-02-05Declare the x509_(mem|file|dir)_lookup symbols as static because theyReyk Floeter
2015-01-28Fix a number of issues relating to algorithms in signatures, MostlyBob Beck