Dr. Stephen Henson
|
4b4f249e0d
Oops, s can be NULL
|
15 years ago |
Dr. Stephen Henson
|
e5eb96c83a
PR: 2013
|
15 years ago |
Dr. Stephen Henson
|
710c1c34d1
Allow checking of self-signed certifictes if a flag is set.
|
15 years ago |
Dr. Stephen Henson
|
f1ed5fa827
Update from 0.9.8-stable.
|
15 years ago |
Dr. Stephen Henson
|
268e78c305
PR: 1899
|
15 years ago |
Dr. Stephen Henson
|
87d3a0cd90
Experimental new date handling routines. These fix issues with X509_time_adj()
|
16 years ago |
Geoff Thorpe
|
fa0f834c20
Fix build warnings.
|
16 years ago |
Ben Laurie
|
43048d13c8
Fix warning.
|
16 years ago |
Dr. Stephen Henson
|
d43c4497ce
Initial support for delta CRLs. If "use deltas" flag is set attempt to find
|
16 years ago |
Dr. Stephen Henson
|
4b96839f06
Add support for CRLs partitioned by reason code.
|
16 years ago |
Dr. Stephen Henson
|
d0fff69dc9
Initial indirect CRL support.
|
16 years ago |
Dr. Stephen Henson
|
9d84d4ed5e
Initial support for CRL path validation. This supports distinct certificate
|
16 years ago |
Dr. Stephen Henson
|
2e0c7db950
Initial code to support distinct certificate and CRL signing keys where the
|
16 years ago |
Dr. Stephen Henson
|
002e66c0e8
Support for policy mappings extension.
|
16 years ago |
Dr. Stephen Henson
|
e9746e03ee
Initial support for name constraints certificate extension.
|
16 years ago |
Dr. Stephen Henson
|
3e727a3b37
Add support for nameRelativeToCRLIssuer field in distribution point name
|
16 years ago |
Dr. Stephen Henson
|
5cbd203302
Initial support for alternative CRL issuing certificates.
|
16 years ago |
Dr. Stephen Henson
|
db50661fce
X509 verification fixes.
|
16 years ago |
Dr. Stephen Henson
|
56c7754cab
Avoid warnings.
|
16 years ago |
Dr. Stephen Henson
|
a6fbcb4220
Change safestack reimplementation to match 0.9.8.
|
17 years ago |
Richard Levitte
|
82bf227e91
After objects have been freed, NULLify the pointers so there will be no double
|
17 years ago |
Dr. Stephen Henson
|
560b79cbff
Constify version strings and some structures.
|
17 years ago |
Nils Larsch
|
91b73acb19
use const ASN1_TIME *
|
18 years ago |
Dr. Stephen Henson
|
10ca15f3fa
Fix change to OPENSSL_NO_RFC3779
|
18 years ago |
Ben Laurie
|
96ea4ae91c
Add RFC 3779 support.
|
18 years ago |
Dr. Stephen Henson
|
010fa0b331
Tidy up CRL handling by checking for critical extensions when it is
|
18 years ago |
Dr. Stephen Henson
|
5d20c4fb35
Overhaul of by_dir code to handle dynamic loading of CRLs.
|
18 years ago |
Dr. Stephen Henson
|
bc7535bc7f
Support for AKID in CRLs and partial support for IDP. Overhaul of CRL
|
18 years ago |
Dr. Stephen Henson
|
016bc5ceb3
Fixes for new CRL/cert callbacks. Update CRL processing code to use new
|
18 years ago |
Dr. Stephen Henson
|
4d50a2b4d6
Add verify callback functions to lookup a STACK of matching certs or CRLs
|
18 years ago |