aboutsummaryrefslogtreecommitdiffstats
path: root/src/crypto/x509.c
Commit message (Expand)AuthorAgeFilesLines
* [crypto] Add x509_truncate() to truncate a certificate chainMichael Brown2024-02-141-9/+23
* [x509] Use case-insensitive comparison for certificate namesMichael Brown2021-05-181-1/+2
* [x509] Clarify debug message for an untrusted X.509 issuerJosh McSavaney2020-12-281-1/+1
* [x509] Make root of trust a reference-counted structureMichael Brown2020-12-091-11/+45
* [x509] Record root of trust used when validating a certificateMichael Brown2020-12-081-4/+19
* [asn1] Rename ASN1_OID_CURSOR to ASN1_CURSORMichael Brown2020-12-081-9/+9
* [ocsp] Centralise test for whether or not an OCSP check is requiredMichael Brown2018-03-181-2/+2
* [crypto] Add certstat() to display basic certificate informationMichael Brown2016-08-311-2/+2
* [crypto] Generalise X.509 "valid" field to a "flags" fieldMichael Brown2016-08-251-4/+4
* [crypto] Add image_x509() to extract X.509 certificates from imageMichael Brown2016-08-251-0/+42
* [crypto] Support SHA-{224,384,512} in X.509 certificatesMichael Brown2015-08-021-0/+3
* [base16] Add buffer size parameter to base16_encode() and base16_decode()Michael Brown2015-04-241-1/+2
* [build] Fix the REQUIRE_SYMBOL mechanismMichael Brown2015-03-051-0/+3
* [legal] Relicense files under GPL2_OR_LATER_OR_UBDLMichael Brown2015-03-021-1/+5
* [crypto] Fix debug messageMichael Brown2014-07-121-1/+1
* [crypto] Add support for iPAddress subject alternative namesMichael Brown2014-07-111-0/+55
* [crypto] Allow wildcard matches on commonName as well as subjectAltNameMichael Brown2014-04-011-10/+8
* [crypto] Add support for subjectAltName and wildcard certificatesMichael Brown2014-03-311-8/+132
* [crypto] Allow signed timestamp error margin to be configured at build timeMichael Brown2014-03-301-2/+3
* [crypto] Use fingerprint when no common name is available for debug messagesMichael Brown2014-03-281-4/+14
* [crypto] Generalise X.509 cache to a full certificate storeMichael Brown2014-03-281-61/+32
* [crypto] Remove dynamically-allocated storage for certificate OCSP URIMichael Brown2014-03-251-26/+7
* [crypto] Remove dynamically-allocated storage for certificate nameMichael Brown2014-03-251-50/+86
* [crypto] Report meaningful error when certificate chain validation failsMichael Brown2013-05-101-7/+5
* [legal] Update FSF mailing address in GPL licence textsMichael Brown2012-07-201-1/+2
* [arp] Try to avoid discarding ARP cache entriesMichael Brown2012-07-091-1/+1
* [crypto] Allow an error margin on X.509 certificate validity periodsMichael Brown2012-06-201-2/+2
* [crypto] Require OCSP check if certificate provides an OCSP URIMichael Brown2012-05-221-0/+12
* [crypto] Return a NULL X.509 certificate if construction failsMichael Brown2012-05-211-0/+1
* [crypto] Add framework for OCSPMichael Brown2012-05-151-3/+3
* [crypto] Parse OCSPSigning key purpose, if presentMichael Brown2012-05-141-0/+8
* [crypto] Generalise x509_parse_bit_string() to asn1_bit_string()Michael Brown2012-05-141-93/+16
* [crypto] Generalise asn1_{digest,pubkey,signature}_algorithm()Michael Brown2012-05-141-66/+13
* [crypto] Generalise x509_parse_time() to asn1_generalized_time()Michael Brown2012-05-141-116/+10
* [crypto] Parse X.509 raw public key bit stringMichael Brown2012-05-141-2/+8
* [crypto] Reduce standard debugging outputMichael Brown2012-05-091-47/+49
* [crypto] Add x509_auto_append()Michael Brown2012-05-081-0/+66
* [crypto] Add x509_append_raw()Michael Brown2012-05-081-0/+32
* [crypto] Check that common name contains no NUL charactersMichael Brown2012-05-081-0/+9
* [crypto] Allow for X.509 certificates with no common nameMichael Brown2012-05-081-3/+3
* [crypto] Allow certificate chains to be long-lived data structuresMichael Brown2012-05-041-116/+362
* [crypto] Parse OCSP responder URI from X.509 certificateMichael Brown2012-05-041-6/+142
* [crypto] Parse X.509 extended key usage extensionMichael Brown2012-03-221-0/+85
* [crypto] Differentiate "untrusted root" and "incomplete chain" error casesMichael Brown2012-03-221-1/+13
* [crypto] Shrink raw certificate data to fit certificateMichael Brown2012-03-221-0/+1
* [crypto] Add previous certificate in chain as a parameter to parse_next()Michael Brown2012-03-221-4/+6
* [crypto] Parse X.509 certificate serial numberMichael Brown2012-03-221-2/+29
* [crypto] Generalise X.509 OID-identified algorithm to asn1.cMichael Brown2012-03-221-95/+28
* [crypto] Validate path length constraint in certificate chainMichael Brown2012-03-211-0/+14
* [tls] Check certificate validity period against current date and timeMichael Brown2012-03-191-7/+41
generated by cgit (git 2.34.1) at 2025-02-23 05:42:00 +0000