Nils Larsch
|
360ff3cf58
fix order
|
18 years ago |
Dr. Stephen Henson
|
10ca15f3fa
Fix change to OPENSSL_NO_RFC3779
|
18 years ago |
Ben Laurie
|
96ea4ae91c
Add RFC 3779 support.
|
18 years ago |
Dr. Stephen Henson
|
bc7535bc7f
Support for AKID in CRLs and partial support for IDP. Overhaul of CRL
|
18 years ago |
Dr. Stephen Henson
|
edc540211c
Cache some CRL related extensions.
|
18 years ago |
Ulf Möller
|
c7235be6e3
RFC 3161 compliant time stamp request creation, response generation
|
18 years ago |
Richard Levitte
|
d9bfe4f97c
Added restrictions on the use of proxy certificates, as they may pose
|
19 years ago |
Richard Levitte
|
6951c23afd
Add functionality needed to process proxy certificates.
|
20 years ago |
Dr. Stephen Henson
|
8f284faaec
V1 certificates that aren't self signed can't be accepted as CAs.
|
20 years ago |
Richard Levitte
|
5073ff0346
Split X509_check_ca() into a small self and an internal function
|
20 years ago |
Richard Levitte
|
30b415b076
Make an explicit check during certificate validation to see that the
|
20 years ago |
Dr. Stephen Henson
|
bc50157010
Various X509 fixes. Disable broken certificate workarounds
|
20 years ago |
Geoff Thorpe
|
2754597013
A general spring-cleaning (in autumn) to fix up signed/unsigned warnings.
|
21 years ago |
Richard Levitte
|
b637670f03
DVCS (see RFC 3029) was missing among the possible purposes.
|
21 years ago |
Bodo Möller
|
072569e0f1
Undo previous change, X509_check_issued() was correct.
|
23 years ago |
Richard Levitte
|
63810d8566
Apply a small patch from Diego R. Lopez <diego.lopez@rediris.es>,
|
23 years ago |
Dr. Stephen Henson
|
f1558bb424
|
23 years ago |
Dr. Stephen Henson
|
926a56bfe3
|
23 years ago |
Richard Levitte
|
cf1b7d9664
Make all configuration macros available for application by making
|
23 years ago |
Dr. Stephen Henson
|
8cff6331c9
Tolerate some "variations" used in some
|
24 years ago |
Dr. Stephen Henson
|
81f169e95c
|
24 years ago |
Dr. Stephen Henson
|
9d6b1ce644
|
24 years ago |
Dr. Stephen Henson
|
2f043896d1
*BIG* verify code reorganisation.
|
24 years ago |
Richard Levitte
|
26a3a48d65
There have been a number of complaints from a number of sources that names
|
24 years ago |
Geoff Thorpe
|
ccd86b68ef
The previous commit to crypto/stack/*.[ch] pulled the type-safety strings
|
24 years ago |
Dr. Stephen Henson
|
0cb957a684
Fix for SSL server purpose checking
|
24 years ago |
Dr. Stephen Henson
|
068fdce877
New compatability trust and purpose settings.
|
24 years ago |
Bodo Möller
|
6d0d5431d4
More get0 et al. changes. Also provide fgrep targets in CHANGES
|
24 years ago |
Dr. Stephen Henson
|
c7cb16a8ff
Rename functions for new convention.
|
24 years ago |
Dr. Stephen Henson
|
ff8a4c47ce
Rename the X509V3_*_d2i functions to X509_get_ext_d2i() etc.
|
25 years ago |