summaryrefslogtreecommitdiff
path: root/src/lib/libcrypto/x509 (follow)
Commit message (Expand)AuthorAgeFilesLines
* Fix a NULL dereference in GENERAL_NAME_cmp()tb2020-12-081-6/+46
* Avoid undefined behavior due to memcpy(NULL, NULL, 0)tb2020-11-251-4/+6
* Plug leak in x509_verify_chain_dup()tb2020-11-181-2/+2
* Plug a big memory leak in the new validatortb2020-11-181-1/+6
* zap ugly empty line before closing bracetb2020-11-181-2/+1
* Move freeing of the verify context to its natural place instead oftb2020-11-181-2/+2
* KNF (whitespace)tb2020-11-184-13/+13
* Use X509_V_OK instead of 0.jsing2020-11-161-4/+3
* Add back an X509_STORE_CTX error code assignment.jsing2020-11-161-2/+3
* Return the specific failure for a "self signed certificate" in the chainbeck2020-11-151-1/+14
* Handle additional certificate error cases in new X.509 verifier.jsing2020-11-112-12/+79
* Fix bad indent.jsing2020-11-031-7/+6
* Hook X509_STORE_CTX get_issuer() callback from new X509 verifier.jsing2020-11-031-3/+17
* Add a safety net to ensure that we set an error on the store context.tb2020-10-261-1/+3
* If x509_verify() fails, ensure that the error is also set on the storetb2020-10-261-10/+15
* Make sure that x509_vfy_check_id() failure also sets ctx->error, not onlytb2020-10-261-3/+8
* Ensure leaf is set up on X509_STORE_CTX before verification.jsing2020-09-261-9/+7
* jumping into the x509 fray with a bunch of whitespace repairderaadt2020-09-261-6/+6
* Ensure chain is set on the X509_STORE_CTX before triggering callback.jsing2020-09-231-12/+39
* Fix some line wrapping and other whitespace issues.tb2020-09-211-45/+34
* Move freeing and zeroing up to right after the while loop.tb2020-09-211-5/+5
* Avoid memleak caused by shadowingtb2020-09-201-2/+5
* KNF/whitespace nitstb2020-09-202-6/+7
* Correct a 1 byte read overflow in x509_contraints_uri and addbeck2020-09-201-4/+9
* Fix a memory leak in x509_constraints_extract_namestb2020-09-201-6/+6
* remove superfluous NULL checkbeck2020-09-191-2/+2
* Fix potential overflow in CN subject line parsing, thanks tobeck2020-09-181-4/+5
* revert my putting this on a diet. sadly the NAME_CONSTRAINTS_checkbeck2020-09-161-7/+1
* noop NAME_CONSTRAINTS_check stubinoguchi2020-09-161-4/+5
* Make check in x509_verify_ctx_set_max_signatures() consistent with others.jsing2020-09-161-4/+2
* Dedup code in x509_verify_ctx_new_from_xsc().jsing2020-09-161-14/+7
* set error_depth and current_cert to make more legacy callbacks that don't checkbeck2020-09-151-1/+3
* Deduplicate the time validation code between the legacy and newbeck2020-09-153-27/+8
* ifdef out code that is no longer used in here. once we are certainbeck2020-09-151-2/+5
* Set error if we are given an NULL ctx in x509_verify, and set errorbeck2020-09-141-5/+3
* nuke a stray spacetb2020-09-141-2/+2
* Fix potential leak when tmpext fails to be added tobeck2020-09-141-2/+6
* remove unneeded variable "type".beck2020-09-141-6/+5
* Don't leak names on successbeck2020-09-141-1/+2
* remove unneded variable "time1"beck2020-09-141-6/+6
* remove unneded variable "time"beck2020-09-141-3/+2
* fix bug introduced on review where refactor made it possible tobeck2020-09-141-2/+2
* re-enable new x509 chain verifier as the defaultbeck2020-09-141-3/+1
* Correctly fix double free introduced on review.beck2020-09-142-3/+3
* Fix double free - review moved the pop_free of roots to x509_verify_ctx_freebeck2020-09-141-2/+1
* revert previous, need to fix a problembeck2020-09-141-1/+3
* Enable the use of the new x509 chain validator by default.beck2020-09-141-3/+1
* Add new x509 certificate chain validator in x509_verify.cbeck2020-09-139-57/+1188
* Change over to use the new x509 name constraints verification.beck2020-09-121-28/+7
* Add x509_constraints.c - a new implementation of x509 name constraints, withbeck2020-09-112-0/+1270
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-12-28 21:06:37 +0000