embed CRL serial number and signature fields
[openssl.git] / crypto / x509 / x509_vfy.c
2015-10-15 Dr. Stephen Hensonembed CRL serial number and signature fields
2015-09-05 mrpreIn X509_STORE_CTX_init, cleanup on failure
2015-09-05 David WoodhouseRT3951: Add X509_V_FLAG_NO_CHECK_TIME to suppress time...
2015-09-03 David WoodhouseRevert "OPENSSL_NO_xxx cleanup: RFC3779"
2015-09-03 Rich SalzAdd and use OPENSSL_zalloc
2015-09-02 Dr. Stephen Hensonmake X509_CRL opaque
2015-09-02 Viktor DukhovniBetter handling of verify param id peername field
2015-08-31 Dr. Stephen HensonAdd X509_up_ref function.
2015-08-31 Dr. Stephen HensonAdd X509_CRL_up_ref function
2015-08-28 Alessandro GhediniGH354: Memory leak fixes
2015-08-13 Ismo PuustinenGH364: Free memory on an error path
2015-08-10 Rich SalzRT3999: Remove sub-component version strings
2015-07-07 Matt CaswellExtend -show_chain option to verify to show more info
2015-07-07 Matt CaswellReject calls to X509_verify_cert that have not been...
2015-07-07 Matt CaswellFix alternate chains certificate forgery issue
2015-06-11 Emilia KasperFix length checks in X509_cmp_time to avoid out-of...
2015-05-14 Richard LevitteIdentify and move common internal libcrypto header...
2015-05-06 Gunnar KudrjavetsInitialize potentially uninitialized local variables
2015-05-06 Rich Salzmemset, memcpy, sizeof consistency fixes
2015-05-04 Rich SalzUse safer sizeof variant in malloc
2015-05-01 Rich Salzfree NULL cleanup -- coda
2015-05-01 Rich SalzRemove goto inside an if(0) block
2015-04-30 Rich Salzfree NULL cleanup 5a
2015-04-28 Rich Salzremove malloc casts
2015-03-28 Rich Salzfree NULL cleanup
2015-03-24 Dr. Stephen HensonFix verify algorithm.
2015-02-25 Matt CaswellAdd flag to inhibit checking for alternate certificate...
2015-02-25 Matt CaswellIn certain situations the server provided certificate...
2015-02-09 Dr. Stephen HensonRemove obsolete IMPLEMENT_ASN1_SET_OF
2015-02-08 Rich SalzFinal (for me, for now) dead code cleanup
2015-02-06 Rich Salzutil/mkstack.pl now generates entire safestack.h
2015-01-27 Rich SalzOPENSSL_NO_xxx cleanup: RFC3779
2015-01-27 Rich SalzOPENSSL_NO_xxx cleanup: many removals
2015-01-22 Matt CaswellMore comment realignment master-post-reformat
2015-01-22 Matt CaswellRun util/openssl-format-source -v -c .
2015-01-22 Matt CaswellFurther comment changes for reformat (master)
2015-01-06 Matt CaswellFurther comment amendments to preserve formatting prior...
2014-09-08 Paul SuhlerRT2841: Extra return in check_issued
2014-08-15 Rich SalzRT2751: Declare get_issuer_sk() earlier.
2014-07-07 Viktor DukhovniUpdate API to use (char *) for email addresses and...
2014-07-05 Viktor DukhovniSet optional peername when X509_check_host() succeeds.
2014-06-23 Viktor DukhovniOne more typo when changing !result to result <= 0
2014-06-23 Viktor DukhovniFix typo in last commit
2014-06-23 Viktor DukhovniMultiple verifier reference identities.
2014-06-23 Viktor DukhovniX509_check_mumble() failure is <= 0, not just 0
2014-06-22 Viktor DukhovniDrop hostlen from X509_VERIFY_PARAM_ID.
2014-05-25 Dr. Stephen HensonDon't use expired certificates if possible.
2014-05-25 Dr. Stephen HensonRename vpm_int.h to x509_lcl.h
2014-05-21 Viktor DukhovniFixes to host checking.
2014-03-03 Dr. Stephen HensonFor self signed root only indicate one error.
2014-02-14 Dr. Stephen HensonInclude TA in checks/callback with partial chains.
2014-02-14 Dr. Stephen HensonDon't do loop detection for self signed check.
2014-01-09 Dr. Stephen HensonFix bug in X509_V_FLAG_IGNORE_CRITICAL CRL handling.
2013-12-13 Dr. Stephen HensonAdd opaque ID structure.
2013-12-13 Dr. Stephen HensonFix for partial chain notification.
2013-09-08 Dr. Stephen HensonPartial path fix.
2013-07-12 Dr. Stephen HensonFix verify loop with CRL checking.
2013-01-06 Ben LaurieFix warning.
2012-12-21 Dr. Stephen HensonMake partial chain checking work if we only have the...
2012-12-13 Dr. Stephen HensonNew verify flag to return success if we have any certif...
2012-12-06 Dr. Stephen HensonFix two bugs which affect delta CRL handling:
2012-12-05 Dr. Stephen HensonIntegrate host, email and IP address checks into X509_v...
2012-12-04 Dr. Stephen Hensoninitial support for delta CRL generations by diffing...
2012-08-03 Dr. Stephen HensonRename Suite B functions for consistency.
2012-08-03 Dr. Stephen Hensonadd suite B chain validation flags and associated verif...
2012-03-05 Dr. Stephen Hensondon't do loop check for single self signed certificate
2011-09-23 Dr. Stephen HensonPR: 2606
2011-09-06 Dr. Stephen HensonInitialise X509_STORE_CTX properly so CRLs with nextUpd...
2010-12-25 Dr. Stephen Hensonavoid verification loops in trusted store when path...
2010-11-02 Dr. Stephen HensonSubmitted by: Jonathan Dixon <joth@chromium.org>
2010-02-25 Dr. Stephen Hensonadd -trusted_first option and verify flag
2010-02-25 Dr. Stephen Hensontidy verify code. xn not used any more and check for...
2010-02-25 Dr. Stephen HensonExperimental support for partial chain verification...
2009-11-17 Dr. Stephen HensonPR: 2103
2009-10-31 Dr. Stephen HensonAdd missing functions to allow access to newer X509_STO...
2009-10-23 Dr. Stephen HensonIf not checking all certificates don't attempt to find...
2009-10-22 Dr. Stephen HensonNeed to check <= 0 here.
2009-09-04 Dr. Stephen HensonOops, s can be NULL
2009-09-02 Dr. Stephen HensonPR: 2013
2009-06-26 Dr. Stephen HensonUpdate from 1.0.0-stable.
2009-06-15 Dr. Stephen HensonUpdate from 0.9.8-stable.
2009-04-15 Dr. Stephen HensonUpdates from 1.0.0-stable.
2008-10-07 Dr. Stephen HensonExperimental new date handling routines. These fix...
2008-09-15 Geoff ThorpeFix build warnings.
2008-09-07 Ben LaurieFix warning.
2008-09-01 Dr. Stephen HensonInitial support for delta CRLs. If "use deltas" flag...
2008-08-29 Dr. Stephen HensonAdd support for CRLs partitioned by reason code.
2008-08-20 Dr. Stephen HensonInitial indirect CRL support.
2008-08-13 Dr. Stephen HensonInitial support for CRL path validation. This supports...
2008-08-12 Dr. Stephen HensonInitial code to support distinct certificate and CRL...
2008-08-12 Dr. Stephen HensonSupport for policy mappings extension.
2008-08-08 Dr. Stephen HensonInitial support for name constraints certificate extension.
2008-08-04 Dr. Stephen HensonAdd support for nameRelativeToCRLIssuer field in distri...
2008-07-30 Dr. Stephen HensonInitial support for alternative CRL issuing certificates.
2008-07-13 Dr. Stephen HensonX509 verification fixes.
2008-02-28 Dr. Stephen HensonAvoid warnings.
2007-09-07 Dr. Stephen HensonChange safestack reimplementation to match 0.9.8.
2007-02-07 Richard LevitteAfter objects have been freed, NULLify the pointers...
2007-01-21 Dr. Stephen HensonConstify version strings and some structures.
2006-12-11 Nils Larschuse const ASN1_TIME *
next