- 08 9月, 2014 1 次提交
-
-
由 Robin Lee 提交于
Copy the ifdef/undef stanza from x509.h to x509v3.h Reviewed-by: NDr. Stephen Henson <steve@openssl.org>
-
- 07 7月, 2014 1 次提交
-
-
由 Viktor Dukhovni 提交于
Reduces number of silly casts in OpenSSL code and likely most applications. Consistent with (char *) for "peername" value from X509_check_host() and X509_VERIFY_PARAM_get0_peername().
-
- 05 7月, 2014 1 次提交
-
-
由 Viktor Dukhovni 提交于
Pass address of X509_VERIFY_PARAM_ID peername to X509_check_host(). Document modified interface.
-
- 13 6月, 2014 1 次提交
-
-
由 Viktor Dukhovni 提交于
A client reference identity of ".example.com" matches a server certificate presented identity that is any sub-domain of "example.com" (e.g. "www.sub.example.com). With the X509_CHECK_FLAG_SINGLE_LABEL_SUBDOMAINS flag, it matches only direct child sub-domains (e.g. "www.sub.example.com").
-
- 21 5月, 2014 1 次提交
-
-
由 Viktor Dukhovni 提交于
Fixes to host checking wild card support and add support for setting host checking flags when verifying a certificate chain.
-
- 18 11月, 2012 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Contributed by: Florian Weimer <fweimer@redhat.com> Fixes to X509 hostname and email address checking. Wildcard matching support. New test program and manual page.
-
- 08 10月, 2012 1 次提交
-
-
由 Dr. Stephen Henson 提交于
certificate. Add options to s_client, s_server and x509 utilities to print results of checks.
-
- 04 3月, 2010 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 25 2月, 2010 1 次提交
-
-
由 Dr. Stephen Henson 提交于
as issuer and subject names. Although this is an incompatible change it should have little impact in pratice because self-issued certificates that are not self-signed are rarely encountered.
-
- 24 2月, 2010 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 28 7月, 2009 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 20 4月, 2009 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 06 11月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 12 10月, 2008 1 次提交
-
-
由 Ben Laurie 提交于
-
- 01 9月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
a delta CRL in addition to a full CRL. Check and search delta in addition to the base.
-
- 29 8月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Tidy CRL scoring system. Add new CRL path validation error.
-
- 08 8月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
TODO: robustness checking on name forms.
-
- 04 8月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
fields.
-
- 13 7月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Ignore self issued certificates when checking path length constraints. Duplicate OIDs in policy tree in case they are allocated. Use anyPolicy from certificate cache and not current tree level.
-
- 04 6月, 2008 1 次提交
-
-
由 Ben Laurie 提交于
-
- 26 5月, 2008 1 次提交
-
-
由 Ben Laurie 提交于
-
- 02 4月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 25 3月, 2008 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 27 9月, 2007 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 07 6月, 2007 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 11 4月, 2007 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 06 12月, 2006 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 30 11月, 2006 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 27 11月, 2006 1 次提交
-
-
由 Ben Laurie 提交于
-
- 15 9月, 2006 1 次提交
-
-
由 Dr. Stephen Henson 提交于
handling to support this.
-
- 10 9月, 2006 1 次提交
-
-
由 Dr. Stephen Henson 提交于
based on subject name. New thread safe functions to retrieve matching STACK from X509_STORE. Cache some IDP components.
-
- 24 7月, 2006 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 13 2月, 2006 1 次提交
-
-
由 Ulf Möller 提交于
and response verification. Submitted by: Zoltan Glozik <zglozik@opentsa.org> Reviewed by: Ulf Moeller
-
- 09 1月, 2006 1 次提交
-
-
由 Bodo Möller 提交于
"make errors".
-
- 26 7月, 2005 3 次提交
-
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
-
- 24 7月, 2005 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 11 5月, 2005 1 次提交
-
-
由 Bodo Möller 提交于
(Also improve util/ck_errf.pl script, and occasionally fix source code formatting.)
-
- 18 1月, 2005 1 次提交
-
-
由 Richard Levitte 提交于
- Enforce that there should be no policy settings when the language is one of id-ppl-independent or id-ppl-inheritAll. - Add functionality to ssltest.c so that it can process proxy rights and check that they are set correctly. Rights consist of ASCII letters, and the condition is a boolean expression that includes letters, parenthesis, &, | and ^. - Change the proxy certificate configurations so they get proxy rights that are understood by ssltest.c. - Add a script that tests proxy certificates with SSL operations. Other changes: - Change the copyright end year in mkerr.pl. - make update.
-