aboutsummaryrefslogtreecommitdiffstats
path: root/src/libstrongswan/plugins/x509/x509_cert.c
Commit message (Collapse)AuthorAgeFilesLines
* fixed parsing of X.509 certificatePoliciesAndreas Steffen2011-03-111-4/+4
|
* [hopefully] fixed pathlen problem on ARM platformsAndreas Steffen2011-02-101-15/+20
|
* Some typos fixed.Tobias Brunner2011-02-071-1/+1
|
* introduced libstrongswan.x509.enforce_critical parameterAndreas Steffen2011-02-051-2/+2
|
* Slightly renamed different policyConstraints to distinguish them betterMartin Willi2011-01-051-26/+26
|
* Added support for inhibitAnyPolicy constraint to x509 pluginMartin Willi2011-01-051-33/+57
|
* Use a generic getter for all numerical X.509 constraintsMartin Willi2011-01-051-14/+13
|
* Moved CRL distribution point building to an exportable functionMartin Willi2011-01-051-29/+43
|
* Simplified format of x509 CRL URI parsing/enumeratorMartin Willi2011-01-051-127/+89
|
* Added support for policyConstraints to x509 pluginMartin Willi2011-01-051-6/+122
|
* Slightly renamed X509_NO_PATH_LEN_CONSTRAINT to use it for ↵Martin Willi2011-01-051-3/+3
| | | | PolicyConstraints, too
* Added policyMappings support to x509 pluginMartin Willi2011-01-051-3/+130
|
* Added certificatePolicy support to x509 pluginMartin Willi2011-01-051-3/+163
|
* Added support for generating NameConstraints in x509 pluginMartin Willi2011-01-051-4/+74
|
* Added support for parsing NameConstraints in x509 pluginMartin Willi2011-01-051-0/+59
|
* Added name constraint enumerator to x509 interfaceMartin Willi2011-01-051-1/+29
|
* Migrated x509_cert_t to INIT/METHOD macrosMartin Willi2011-01-051-144/+88
|
* Parse and encode crlSign keyUsage flag in x509 pluginMartin Willi2011-01-051-10/+71
|
* Added support for CRL Issuers to x509 and OpenSSL pluginsMartin Willi2011-01-051-57/+174
|
* Compare subject against all key identifiers in has_subject()Martin Willi2010-09-091-9/+12
|
* has_subject() now resolves ID_KEY_IDsAndreas Steffen2010-09-091-4/+14
|
* Parse UPN subjectAltNames in x509 pluginMartin Willi2010-08-101-9/+24
|
* Support different encoding types in certificate.get_encoding()Martin Willi2010-07-131-4/+14
|
* Renamed key_encod{ing,der}_t and constants, prepare for generic credential ↵Martin Willi2010-07-131-4/+4
| | | | encoding
* Select subjectAltName address family using address length in x509 pluginMartin Willi2010-06-241-1/+11
|
* Removed is_newer() from certificate_t, obsoleting all implementationsMartin Willi2010-05-211-18/+0
|
* Adding DBG_LIB to all calls of libstrongswan's version of DBG*.Tobias Brunner2010-04-061-28/+30
|
* critical keyUsage extension must be parsedAndreas Steffen2010-03-071-0/+3
|
* set Certificate Sign and CRL Sign flags in keyUsage extension if CA is trueAndreas Steffen2010-03-071-4/+13
|
* initialize variables to avoid compiler warningAndreas Steffen2010-02-051-2/+2
|
* Support TLS client authentication Extended Key Usage in x509 generationMartin Willi2010-01-141-8/+16
|
* ipsec pki --self|issue supports --pathlen option setting a path length ↵Andreas Steffen2009-12-311-2/+18
| | | | constraint
* X509_IP_ADDR_BLOCKS flag signals the presence of an ipAddrBlock certificate ↵Andreas Steffen2009-12-221-1/+2
| | | | extension
* added create_ipAddrBlock_enumerator() method to x509_tAndreas Steffen2009-12-221-0/+9
|
* traffic_selector supports RFC 3779 address range formatAndreas Steffen2009-12-211-7/+75
|
* parse RFC 3779 addressFamilyAndreas Steffen2009-12-201-2/+16
|
* plugin name is x509Andreas Steffen2009-12-201-1/+1
|
* discard certificate with unknown critical extensionsAndreas Steffen2009-12-201-0/+8
|
* use traffic_selector_t object to represent ipAddrBlocksAndreas Steffen2009-12-201-1/+2
|
* parse ipAddrBlocksAndreas Steffen2009-12-171-1/+69
|
* implemented path length constraint checkinf for IKEv2Andreas Steffen2009-11-041-1/+1
|
* output optional pathLenConstraint in ipsec listcacertsAndreas Steffen2009-11-041-0/+9
|
* implemented parsing of pathLenConstraintAndreas Steffen2009-11-041-11/+36
|
* ipsec pki --issue suports --flag authServer optionAndreas Steffen2009-10-051-14/+31
|
* ipsec pki --issue supports --flag ocspSigning optionAndreas Steffen2009-10-051-7/+24
|
* mark embedded parsing in debug modeAndreas Steffen2009-10-021-0/+2
|
* verify correctness of X.509 versionsAndreas Steffen2009-10-021-2/+18
|
* added get_subjectKeyIdentifier() to x509_tAndreas Steffen2009-09-261-14/+32
|
* adding additional flags to loaded X.509 certificatesAndreas Steffen2009-09-221-0/+5
|
* implemented ASN.1 encoding of PKCS#10 attributesAndreas Steffen2009-09-151-40/+56
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-21 14:11:31 +0000