Add flag to inhibit checking for alternate certificate chains. Setting this
[openssl.git] / crypto / x509 / x509_vfy.c
2015-04-20 Matt CaswellAdd flag to inhibit checking for alternate certificate...
2015-04-20 Matt CaswellIn certain situations the server provided certificate...
2015-01-22 Matt CaswellRe-align some comments after running the reformat script. OpenSSL_1_0_2-post-reformat
2015-01-22 Matt CaswellRun util/openssl-format-source -v -c .
2015-01-22 Matt CaswellAdditional comment changes for reformat of 1.0.2
2015-01-22 Matt CaswellFurther comment amendments to preserve formatting prior...
2014-09-08 Paul SuhlerRT2841: Extra return in check_issued
2014-07-07 Viktor DukhovniUpdate API to use (char *) for email addresses and...
2014-07-07 Viktor DukhovniSet optional peername when X509_check_host() succeeds.
2014-07-07 Viktor DukhovniOne more typo when changing !result to result <= 0
2014-07-07 Viktor DukhovniFix typo in last commit
2014-07-07 Viktor DukhovniMultiple verifier reference identities.
2014-06-25 Viktor DukhovniX509_check_mumble() failure is <= 0, not just 0
2014-06-25 Viktor DukhovniDrop hostlen from X509_VERIFY_PARAM_ID.
2014-05-21 Viktor DukhovniFixes to host checking.
2014-03-03 Dr. Stephen HensonFor self signed root only indicate one error.
2014-02-14 Dr. Stephen HensonInclude TA in checks/callback with partial chains.
2014-02-14 Dr. Stephen HensonAdd cert_self_signed function to simplify verify
2014-02-14 Dr. Stephen HensonSimplify X509_STORE_CTX_get1_chain (from master).
2014-01-09 Dr. Stephen HensonFix bug in X509_V_FLAG_IGNORE_CRITICAL CRL handling.
2013-12-13 Dr. Stephen HensonAdd opaque ID structure.
2013-12-13 Dr. Stephen HensonFix for partial chain notification.
2013-09-08 Dr. Stephen HensonPartial path fix.
2013-08-06 Dr. Stephen HensonFix verify loop with CRL checking.
2013-01-17 Dr. Stephen Hensoninitial support for delta CRL generations by diffing...
2013-01-06 Ben LaurieFix warning.
2012-12-26 Dr. Stephen Hensonadd suite B chain validation flags and associated verif...
2012-12-26 Dr. Stephen HensonRevert incompatible OCSP_basic_verify changes.
2012-12-19 Dr. Stephen HensonIntegrate host, email and IP address checks into X509_v...
2012-12-14 Dr. Stephen HensonNew verify flag to return success if we have any certif...
2012-12-14 Ben LaurieBackport OCSP fixes.
2012-12-06 Dr. Stephen HensonFix two bugs which affect delta CRL handling:
2012-09-26 Dr. Stephen Hensonadd -trusted_first option and verify flag (backport...
2012-03-21 cvs2svnThis commit was manufactured by cvs2svn to create branch
2011-09-23 Dr. Stephen HensonPR: 2606
2011-09-06 Dr. Stephen HensonInitialise X509_STORE_CTX properly so CRLs with nextUpd...
2011-06-09 Ben LaurieFix warnings.
2010-11-02 Dr. Stephen HensonSubmitted by: Jonathan Dixon <joth@chromium.org>
2010-06-16 cvs2svnThis commit was manufactured by cvs2svn to create branch
2009-11-17 Dr. Stephen HensonPR: 2103
2009-10-31 Dr. Stephen HensonAdd missing functions to allow access to newer X509_STO...
2009-10-23 Dr. Stephen HensonIf not checking all certificates don't attempt to find...
2009-10-22 Dr. Stephen HensonNeed to check <= 0 here.
2009-09-04 Dr. Stephen HensonOops, s can be NULL
2009-09-02 Dr. Stephen HensonPR: 2013
2009-06-26 Dr. Stephen HensonAllow checking of self-signed certifictes if a flag...
2009-06-15 Dr. Stephen HensonUpdate from 0.9.8-stable.
2009-04-15 Dr. Stephen HensonPR: 1899
2009-03-31 cvs2svnThis commit was manufactured by cvs2svn to create branch
2008-10-07 Dr. Stephen HensonExperimental new date handling routines. These fix...
2008-09-15 Geoff ThorpeFix build warnings.
2008-09-07 Ben LaurieFix warning.
2008-09-01 Dr. Stephen HensonInitial support for delta CRLs. If "use deltas" flag...
2008-08-29 Dr. Stephen HensonAdd support for CRLs partitioned by reason code.
2008-08-20 Dr. Stephen HensonInitial indirect CRL support.
2008-08-13 Dr. Stephen HensonInitial support for CRL path validation. This supports...
2008-08-12 Dr. Stephen HensonInitial code to support distinct certificate and CRL...
2008-08-12 Dr. Stephen HensonSupport for policy mappings extension.
2008-08-08 Dr. Stephen HensonInitial support for name constraints certificate extension.
2008-08-04 Dr. Stephen HensonAdd support for nameRelativeToCRLIssuer field in distri...
2008-07-30 Dr. Stephen HensonInitial support for alternative CRL issuing certificates.
2008-07-13 Dr. Stephen HensonX509 verification fixes.
2008-02-28 Dr. Stephen HensonAvoid warnings.
2007-09-07 Dr. Stephen HensonChange safestack reimplementation to match 0.9.8.
2007-02-07 Richard LevitteAfter objects have been freed, NULLify the pointers...
2007-01-21 Dr. Stephen HensonConstify version strings and some structures.
2006-12-11 Nils Larschuse const ASN1_TIME *
2006-12-06 Dr. Stephen HensonFix change to OPENSSL_NO_RFC3779
2006-11-27 Ben LaurieAdd RFC 3779 support.
2006-09-21 Dr. Stephen HensonTidy up CRL handling by checking for critical extension...
2006-09-17 Dr. Stephen HensonOverhaul of by_dir code to handle dynamic loading of...
2006-09-14 Dr. Stephen HensonSupport for AKID in CRLs and partial support for IDP...
2006-09-11 Dr. Stephen HensonFixes for new CRL/cert callbacks. Update CRL processing...
2006-09-10 Dr. Stephen HensonAdd verify callback functions to lookup a STACK of...
2006-07-25 Dr. Stephen HensonSupport for multiple CRLs with same issuer name in...
2005-06-05 Richard LevitteOld typo...
2005-05-27 Dr. Stephen HensonAssing check_{cert,crl}_time to 'ok' variable so it...
2005-05-11 Bodo MöllerFix more error codes.
2005-04-20 Dr. Stephen HensonRename typed version of M_ASN1_get M_ASN1_get_x to...
2005-04-19 Dr. Stephen HensonVarious Win32 and other fixes for warnings and compilat...
2005-04-10 Dr. Stephen HensonMove allow_proxy_certs declaration to start of function.
2005-04-09 Richard LevitteAdded restrictions on the use of proxy certificates...
2005-03-31 Ben LaurieGive everything prototypes (well, everything that's...
2005-01-17 Richard LevitteChanges concering RFC 3820 (proxy certificates) integra...
2004-12-28 Richard LevitteAdd functionality needed to process proxy certificates.
2004-12-05 Dr. Stephen HensonAdd lots of checks for memory allocation failure, error...
2004-11-29 Richard LevitteMake an explicit check during certificate validation...
2004-10-04 Dr. Stephen HensonFix race condition when CRL checking is enabled.
2004-10-01 Dr. Stephen HensonDon't use C++ reserved work "explicit".
2004-09-06 Dr. Stephen HensonNew X509_VERIFY_PARAM structure and associated function...
2004-03-27 Dr. Stephen HensonAllow CRLs to be passed into X509_STORE_CTX. This is...
2004-03-05 Dr. Stephen HensonVarious X509 fixes. Disable broken certificate workarounds
2003-09-30 Dr. Stephen HensonASN1 parse fix and release file changes.
2003-06-04 Dr. Stephen HensonReally get X509_CRL_CHECK_ALL right this time...
2002-12-10 Richard LevitteA memset() too many got converted into a OPENSSL_cleanse().
2002-11-28 Richard LevitteCleanse memory using the new OPENSSL_cleanse() function.
2002-11-18 Richard LevitteA variable of type time_t is supposed to be a time...
2002-02-23 Dr. Stephen HensonUpdates from stable branch.
2001-10-21 Dr. Stephen HensonReject certificates with unhandled critical extensions.
2001-09-01 Geoff ThorpeMake the necessary changes to work with the recent...
next