summaryrefslogtreecommitdiff
path: root/lib/libcrypto/x509
AgeCommit message (Expand)Author
2015-06-13Fix bad indenting in LibreSSL.Doug Hogan
2015-06-11Avoid a potential out-of-bounds read in X509_cmp_time(), due to missingJoel Sing
2015-04-25Don't ignore the reference count in X509_STORE_free.Doug Hogan
2015-04-12Remove d2i_X509_PKEY and i2d_X509_PKEY from the SSLeay days.Doug Hogan
2015-04-11Remove all getenv() calls, especially those wrapped by issetugid().Theo de Raadt
2015-03-15Avoid a NULL pointer deref when X509_get_pubkey() returns NULL.Doug Hogan
2015-02-12If you do not support POSIX I/O then you're not tall enough to ride...Joel Sing
2015-02-11More unifdef OPENSSL_NO_RFC3779 that got missed last time around.Joel Sing
2015-02-10Remove more IMPLEMENT_STACK_OF noops that have been hiding for the lastJoel Sing
2015-02-10The IMPLEMENT_STACK_OF and IMPLEMENT_ASN1_SET_OF macros were turned intoJoel Sing
2015-02-07Delete a lot of #if 0 code in libressl.Doug Hogan
2015-02-05Declare the x509_(mem|file|dir)_lookup symbols as static because theyReyk Floeter
2015-01-28Fix a number of issues relating to algorithms in signatures, MostlyBob Beck
2015-01-22Use field names in struct initialisers.Joel Sing
2015-01-22Add X509_STORE_load_mem() to load certificates from a memory bufferReyk Floeter
2014-12-06Avoid modifying input on failure in X509_(TRUST|PURPOSE)_add.Doug Hogan
2014-11-18further BUF_strdup conversion: these places should be safe to rely onTed Unangst
2014-10-16Get rid of the last remaining BUF_strdup and BUF_strlcpy and friends, useBob Beck
2014-09-29Previous fix (1.12) would cause a NULL pointer dereference in the error pathMiod Vallat
2014-09-29check_cert(): be sure to reset ctx->current_crl to NULL before freeing it.Miod Vallat
2014-09-29X509_NAME_get_text_by_OBJ(): make sure we do not pass a negative size toMiod Vallat
2014-09-29X509_VERIFY_PARAM_set1_name(): if invoked with NULL as the secondMiod Vallat
2014-09-28X509v3_add_ext(): do not free stuff we did not allocate in the error path.Miod Vallat
2014-09-28X509_TRUST_add(): check X509_TRUST_get0() return value before dereferencing it,Miod Vallat
2014-09-28Someone (TM) thought it was smart to save memory by using malloc(1) andMiod Vallat
2014-09-26X509_STORE_new(): do not leak memory upon error.Miod Vallat
2014-09-26X509_issuer_and_serial_hash(): do not leak memory if an error occurs duringMiod Vallat
2014-09-26X509at_add1_attr(): do not free stuff we did not allocate in the error path.Miod Vallat
2014-09-23Fix regression introduced in revision 1.15 by using strndup() instead ofMiod Vallat
2014-07-25BIO_free() returns immediately when the sole input is NULL.Doug Hogan
2014-07-22Kill a bunch more BUF_strdup's - these are converted to have a check forBob Beck
2014-07-17Free sktmp when it's no longer needed. By doing so, we fix a bunch of memory ...Loganaden Velvindron
2014-07-13Check X509_NAME_oneline() return value when it will have to allocate memory.Miod Vallat
2014-07-12jsing and I are investigating removal of all? most? 'getenv from library'Theo de Raadt
2014-07-12if (x) FOO_free(x) -> FOO_free(x).Miod Vallat
2014-07-12Principle of least surprise: make CMAC_CTX_free(), OCSP_REQ_CTX_free() andMiod Vallat
2014-07-11When looking for the issuer of a certificate, if the current candidate isMiod Vallat
2014-07-11Only import cryptlib.h in the four source files that actually need it.Joel Sing
2014-07-10Explicitly include <openssl/opensslconf.h> in every file that referencesJoel Sing
2014-07-10Stop including standard headers via cryptlib.h - pull in the headers thatJoel Sing
2014-07-10delete some casts. ok miodTed Unangst
2014-07-09remove unused, private version strings except SSL_version_strBrent Cook
2014-07-03Memory-leak-in-error-path of the day in X509_ATTRIBUTE_set1_data().Miod Vallat
2014-06-28Fix a memory leak and another one that occurs in the error paths.Loganaden Velvindron
2014-06-24Unifdef -UNO_SYS_TYPES_HMiod Vallat
2014-06-23Since this is a library, place issetugid() before every getenv()Theo de Raadt
2014-06-20wrap getenv OPENSSL_ALLOW_PROXY_CERTS in an issetugid check, to protectTheo de Raadt
2014-06-19check stack push return and make some effort to clean up. ok beck miodTed Unangst
2014-06-19improve error checking. set error code on error, and check malloc return.Ted Unangst
2014-06-12tags as requested by miod and teduTheo de Raadt