Rich Salz
|
a773b52a61
Remove unused parameters from internal functions
|
8 years ago |
FdaSilvaYY
|
0d4fb84390
GH601: Various spelling fixes.
|
8 years ago |
Rich Salz
|
349807608f
Remove /* foo.c */ comments
|
8 years ago |
Dr. Stephen Henson
|
8382fd3a93
Use X509_get0_pubkey where appropriate
|
8 years ago |
Dr. Stephen Henson
|
af170194a8
embed OCSP_CERTID
|
9 years ago |
Dr. Stephen Henson
|
a332635ea0
Embed various OCSP fields.
|
9 years ago |
Dr. Stephen Henson
|
a8d8e06b0a
Avoid direct X509 structure access
|
9 years ago |
Rich Salz
|
75ebbd9aa4
Use p==NULL not !p (in if statements, mainly)
|
9 years ago |
Rich Salz
|
222561fe8e
free NULL cleanup 5a
|
9 years ago |
Dr. Stephen Henson
|
4ca5efc287
Make OCSP response verification more flexible.
|
9 years ago |
Dr. Stephen Henson
|
6ef869d7d0
Make OCSP structures opaque.
|
9 years ago |
Matt Caswell
|
0f113f3ee4
Run util/openssl-format-source -v -c .
|
9 years ago |
Rich Salz
|
b2aa38a980
RT2560: missing NULL check in ocsp_req_find_signer
|
10 years ago |
Dr. Stephen Henson
|
b48310627d
Don't try and verify signatures if key is NULL (CVE-2013-0166)
|
11 years ago |
Dr. Stephen Henson
|
0028a23b9f
revert OCSP_basic_verify changes: they aren't needed now we support partial chain verification and can pass verify options to ocsp utility
|
11 years ago |
Dr. Stephen Henson
|
e9754726d2
Check chain is not NULL before assuming we have a validated chain.
|
11 years ago |
Dr. Stephen Henson
|
2a21cdbe6b
Use new partial chain flag instead of modifying input parameters.
|
11 years ago |
Ben Laurie
|
ec40e5ff42
Tabification. Remove accidental duplication.
|
11 years ago |
Ben Laurie
|
30c278aa6b
Fix OCSP checking.
|
11 years ago |
Dr. Stephen Henson
|
2fceff5ba3
PR: 2803
|
12 years ago |
Ben Laurie
|
0eab41fb78
If we're going to return errors (no matter how stupid), then we should
|
15 years ago |
Dr. Stephen Henson
|
2e5975285e
Update obsolete email address...
|
16 years ago |
Dr. Stephen Henson
|
cec2538ca9
Submitted by: Victor B. Wagner <vitus@cryptocom.ru>, steve
|
17 years ago |
Dr. Stephen Henson
|
28b987aec9
Don't assume requestorName is present for signed requests. ASN1 OCSP module
|
18 years ago |
Dr. Stephen Henson
|
91180d45f9
Typos.
|
20 years ago |
Geoff Thorpe
|
79aa04ef27
Make the necessary changes to work with the recent "ex_data" overhaul.
|
23 years ago |
Dr. Stephen Henson
|
192ebef8cf
In ocsp_match_issuerid() we are passed the CA that signed the responder
|
23 years ago |
Dr. Stephen Henson
|
d7bbd31efe
Typo in comment.
|
23 years ago |
Dr. Stephen Henson
|
fafc7f9875
|
23 years ago |
Richard Levitte
|
3ebac273f5
Include string.h so mem* functions get properly declared.
|
23 years ago |