summaryrefslogtreecommitdiff
path: root/src/lib/libcrypto/x509/x509_vfy.h (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Provide X509_STORE_CTX_get0_{cert,untrusted}() andjsing2018-02-141-2/+6
| | | | X509_STORE_CTX_set0_{trusted_stack,untrusted}().
* Expose X509_VERIFY_PARAM_* functions that appeared in the OpenSSL 1.0.2jsing2018-02-101-1/+16
| | | | API and are now in use by various libraries and applications.
* Remove prototypes from the public header for X509_VERIFY_PARAM functionsjsing2016-12-211-5/+1
| | | | | | that were recently added but not intended to be made public at this stage. Discussed with beck@
* Part one of the alt chains changes, bring in newer modifications tobeck2016-11-051-4/+30
| | | | | VERIFY_PARAMS - based on boringssl. ok jsing@ miod@
* Add support for disabling certificate and CRL validity checking.jsing2015-09-141-2/+3
| | | | | | Loosely based on changes in OpenSSL. ok beck@
* Delete a lot of #if 0 code in libressl.doug2015-02-071-12/+1
| | | | | | | | | | | | | | | | | | | | | | | | | There are a few instances where #if 1 is removed but the code remains. Based on the following OpenSSL commits. Some of the commits weren't strictly deletions so they are going to be split up into separate commits. 6f91b017bbb7140f816721141ac156d1b828a6b3 3d47c1d331fdc7574d2275cda1a630ccdb624b08 dfb56425b68314b2b57e17c82c1df42e7a015132 c8fa2356a00cbaada8963f739e5570298311a060 f16a64d11f55c01f56baa62ebf1dec7f8fe718cb 9ccc00ef6ea65567622e40c49aca43f2c6d79cdb 02a938c953b3e1ced71d9a832de1618f907eb96d 75d0ebef2aef7a2c77b27575b8da898e22f3ccd5 d6fbb194095312f4722c81c9362dbd0de66cb656 6f1a93ad111c7dfe36a09a976c4c009079b19ea1 1a5adcfb5edfe23908b350f8757df405b0f5f71f 8de24b792743d11e1d5a0dcd336a49368750c577 a2b18e657ea1a932d125154f4e13ab2258796d90 8e964419603d2478dfb391c66e7ccb2dcc9776b4 32dfde107636ac9bc62a5b3233fe2a54dbc27008 input + ok jsing@, miod@, tedu@
* Add X509_STORE_load_mem() to load certificates from a memory bufferreyk2015-01-221-1/+8
| | | | | | | | | | | instead of disk. OpenSSL didn't provide a built-in API from loading certificates in a chroot'ed process that doesn't have direct access to the files. X509_STORE_load_mem() provides a new backend that will be used by libssl and libtls to implement such privsep-friendly functionality. Adopted for LibreSSL based on older code from relayd (by pyr@ and myself) With feedback and OK bluhm@
* Explicitly include <openssl/opensslconf.h> in every file that referencesjsing2014-07-101-1/+2
| | | | | | | | | an OPENSSL_NO_* define. This avoids relying on something else pulling it in for us, plus it fixes several cases where the #ifndef OPENSSL_NO_XYZ is never going to do anything, since OPENSSL_NO_XYZ will never defined, due to the fact that opensslconf.h has not been included. This also includes some miscellaneous sorting/tidying of headers.
* tags as requested by miod and teduderaadt2014-06-121-1/+1
|
* Any sane platform has stdio. Stop pretending we will ever use a platformbeck2014-05-291-4/+0
| | | | | that does not. "fire bomb" tedu@
* Cope with the removal of openssl/symhacks.hderaadt2014-04-131-1/+0
|
* resolve conflicts, fix local changesdjm2010-10-011-1/+37
|
* resolve conflictsdjm2008-09-061-17/+126
|
* resolve conflictsdjm2005-04-291-1/+7
|
* merge 0.9.7dmarkus2004-04-081-5/+14
|
* OpenSSL 0.9.7 stable 2002 05 08 mergebeck2002-05-151-25/+42
|
* openssl-engine-0.9.6 mergebeck2000-12-151-14/+42
|
* OpenSSL 0.9.5 mergebeck2000-03-191-2/+18
| | | | | | *warning* this bumps shared lib minors for libssl and libcrypto from 2.1 to 2.2 if you are using the ssl26 packages for ssh and other things to work you will need to get new ones (see ~beck/libsslsnap/<arch>) on cvs or ~beck/src-patent.tar.gz on cvs
* OpenSSL 0.9.4 mergebeck1999-09-291-100/+68
|
* Import of SSLeay-0.9.0b with RSA and IDEA stubbed + OpenBSD buildryker1998-10-051-0/+378
functionality for shared libs. Note that routines such as sslv2_init and friends that use RSA will not work due to lack of RSA in this library. Needs documentation and help from ports for easy upgrade to full functionality where legally possible.
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-23 06:13:50 +0000