openbsd - A mirror of https://github.com/libressl/openbsd.git

	Commit message (Expand)	Author	Age	Files	Lines
*	In some situations, the verifier would discard the error on an unvalidated	beck	2021-11-24	1	-2/+2
*	Cache sha512 hash and parsed not_before and not_after with X509 cert.	beck	2021-11-04	1	-3/+3
*	Move the now internal X.509-related structs into x509_lcl.h.	tb	2021-11-01	1	-1/+3
*	Validate Subject Alternate Names when they are being added to certificates.	beck	2021-10-26	1	-1/+3
*	Call the callback on success in new verifier in a compatible way	beck	2021-09-03	1	-1/+2
*	Get rid of historical code to extract the roots in the legacy case.	beck	2021-08-28	1	-3/+2
*	Remove the "dump_chain" flag and code. This was a workaround for a problem where	beck	2021-08-28	1	-2/+1
*	Pull roots out of the trust store in the legacy xsc when building chains	beck	2021-08-19	1	-1/+2
*	Add a bunch of workarond in the verifier to support partial chains and	beck	2021-07-10	1	-1/+4
*	Fix checks of memory caps of constraints names	tb	2021-03-12	1	-3/+4
*	Gracefully handle root certificates being both trusted and untrusted.	jsing	2021-01-05	1	-1/+2
*	KNF (whitespace)	tb	2020-11-18	1	-3/+3
*	Handle additional certificate error cases in new X.509 verifier.	jsing	2020-11-11	1	-1/+2
*	Deduplicate the time validation code between the legacy and new	beck	2020-09-15	1	-1/+4
*	Add new x509 certificate chain validator in x509_verify.c	beck	2020-09-13	1	-1/+36
*	Add x509_constraints.c - a new implementation of x509 name constraints, with	beck	2020-09-11	1	-0/+90