aboutsummaryrefslogtreecommitdiff
path: root/crypto/x509/x509_lcl.h
AgeCommit message (Collapse)AuthorFilesLines
2015-05-02make X509_VERIFY_PARAM opaqueDr. Stephen Henson1-0/+18
Reviewed-by: Rich Salz <rsalz@openssl.org>
2015-03-25Remove X509_ATTRIBUTE hack.Dr. Stephen Henson1-11/+1
The X509_ATTRIBUTE structure includes a hack to tolerate malformed attributes that encode as the type instead of SET OF type. This form is never created by OpenSSL and shouldn't be needed any more. Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org>
2015-03-23make X509_EXTENSION opaqueDr. Stephen Henson1-0/+6
Reviewed-by: Rich Salz <rsalz@openssl.org>
2015-03-16Make X509_ATTRIBUTE opaque.Dr. Stephen Henson1-0/+16
Reviewed-by: Rich Salz <rsalz@openssl.org>
2015-01-22Run util/openssl-format-source -v -c .Matt Caswell1-13/+13
Reviewed-by: Tim Hudson <tjh@openssl.org>
2014-07-07Update API to use (char *) for email addresses and hostnamesViktor Dukhovni1-1/+1
Reduces number of silly casts in OpenSSL code and likely most applications. Consistent with (char *) for "peername" value from X509_check_host() and X509_VERIFY_PARAM_get0_peername().
2014-07-06New peername element in X509_VERIFY_PARAM_IDViktor Dukhovni1-0/+1
Declaration, memory management, accessor and documentation.
2014-06-22Multiple verifier reference identities.Viktor Dukhovni1-1/+1
Implemented as STACK_OF(OPENSSL_STRING).
2014-06-22Drop hostlen from X509_VERIFY_PARAM_ID.Viktor Dukhovni1-1/+0
Just store NUL-terminated strings. This works better when we add support for multiple hostnames.
2014-05-25Don't use expired certificates if possible.Dr. Stephen Henson1-0/+2
When looking for the issuer of a certificate, if current candidate is expired, continue looking. Only return an expired certificate if no valid certificates are found. PR#3359
2014-05-25Rename vpm_int.h to x509_lcl.hDr. Stephen Henson1-0/+70
generated by cgit v1.1 at 2024-07-13 21:18:35 +0000