| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | Check for issuer only if we actually got a CRL | Martin Willi | 2011-01-05 | 1 | -7/+7 |
| * | Check inhibitAnyPolicy in constraints plugin | Martin Willi | 2011-01-05 | 1 | -8/+53 |
| * | Slightly renamed different policyConstraints to distinguish them better | Martin Willi | 2011-01-05 | 1 | -26/+26 |
| * | Added support for inhibitAnyPolicy constraint to x509 plugin | Martin Willi | 2011-01-05 | 1 | -33/+57 |
| * | Use a generic getter for all numerical X.509 constraints | Martin Willi | 2011-01-05 | 3 | -28/+26 |
| * | Check inhibitPolicyMapping in constraints plugin | Martin Willi | 2011-01-05 | 1 | -3/+53 |
| * | Check requireExplicitPolicy in constraints plugin | Martin Willi | 2011-01-05 | 1 | -19/+109 |
| * | Pass an additional anchor flag to validate() hook if we reach the root CA | Martin Willi | 2011-01-05 | 2 | -2/+4 |
| * | Always pass auth info to validate(), use pathlen to check for user certificate | Martin Willi | 2011-01-05 | 2 | -5/+8 |
| * | Added support for delta CRLs to x509 plugin | Martin Willi | 2011-01-05 | 2 | -7/+112 |
| * | Moved CRL distribution point building to an exportable function | Martin Willi | 2011-01-05 | 1 | -29/+43 |
| * | Simplified format of x509 CRL URI parsing/enumerator | Martin Willi | 2011-01-05 | 3 | -207/+131 |
| * | Fail on critical extensions in openssl CRLs | Martin Willi | 2011-01-05 | 1 | -1/+6 |
| * | Respect enforce_critical setting in x509 plugin CRLs | Martin Willi | 2011-01-05 | 1 | -0/+8 |
| * | Parse CRL extensions in a switch statement | Martin Willi | 2011-01-05 | 1 | -18/+24 |
| * | Respect policy mappings in certificatePolicy validation | Martin Willi | 2011-01-05 | 1 | -24/+64 |
| * | Validate simple certificatePolicy inheritance | Martin Willi | 2011-01-05 | 1 | -0/+54 |
| * | Added support for policyConstraints to x509 plugin | Martin Willi | 2011-01-05 | 2 | -6/+129 |
| * | Slightly renamed X509_NO_PATH_LEN_CONSTRAINT to use it for PolicyConstraints,... | Martin Willi | 2011-01-05 | 3 | -5/+5 |
| * | Added policyMappings support to x509 plugin | Martin Willi | 2011-01-05 | 2 | -3/+131 |
| * | Added certificatePolicy support to x509 plugin | Martin Willi | 2011-01-05 | 2 | -11/+165 |
| * | Fail when parsing unsupported critical extensions in openssl_x509 | Martin Willi | 2011-01-05 | 1 | -1/+5 |
| * | Do not parse certificates with invalid version in openssl plugin | Martin Willi | 2011-01-05 | 1 | -0/+7 |
| * | Implemented NameConstraint matching in constraints plugin | Martin Willi | 2011-01-05 | 1 | -0/+208 |
| * | Added support for generating NameConstraints in x509 plugin | Martin Willi | 2011-01-05 | 1 | -4/+74 |
| * | Added support for parsing NameConstraints in x509 plugin | Martin Willi | 2011-01-05 | 1 | -0/+59 |
| * | Added name constraint enumerator to x509 interface | Martin Willi | 2011-01-05 | 2 | -1/+30 |
| * | Migrated x509_cert_t to INIT/METHOD macros | Martin Willi | 2011-01-05 | 1 | -144/+88 |
| * | Moved X509 pathlen constraint checking to constraints plugin | Martin Willi | 2011-01-05 | 1 | -0/+29 |
| * | Added plugin stub for advanced X509 constraint checking | Martin Willi | 2011-01-05 | 5 | -0/+231 |
| * | CRL/OCSP validation stores trustchain information in auth_cfg | Martin Willi | 2011-01-05 | 1 | -17/+31 |
| * | Use subject, not issuer, of CRL issuing certificate | Martin Willi | 2011-01-05 | 1 | -1/+1 |
| * | CRLSign keyUsage or CA basicConstraint are sufficient for CRL validation | Martin Willi | 2011-01-05 | 1 | -1/+1 |
| * | Parse and encode crlSign keyUsage flag in x509 plugin | Martin Willi | 2011-01-05 | 1 | -10/+71 |
| * | Use certificate CRLIssuer information to look up cacched CRLs or CDPs | Martin Willi | 2011-01-05 | 1 | -50/+88 |
| * | Added support for CRL Issuers to x509 and OpenSSL plugins | Martin Willi | 2011-01-05 | 3 | -63/+254 |
| * | Load plugins only once, even if listed twice | Martin Willi | 2011-01-05 | 1 | -0/+27 |
| * | printed plugin names have a hyphen | Andreas Steffen | 2010-12-24 | 7 | -5/+9 |
| * | Fixed public key construction from PKCS#11 private key | Martin Willi | 2010-12-23 | 1 | -3/+3 |
| * | Probe for supported AF_ALG algorithms, register dynamically | Martin Willi | 2010-12-20 | 10 | -161/+212 |
| * | Register algorithms with dependencies only if dependency available | Martin Willi | 2010-12-20 | 6 | -64/+133 |
| * | Register some less common AF_ALG ciphers (cast5, serpent, twofish, blowfish) | Martin Willi | 2010-12-20 | 2 | -0/+18 |
| * | Implemented PRFs using AF_ALG | Martin Willi | 2010-12-20 | 4 | -0/+253 |
| * | Use the AF_ALG wrapper in hasher, crypter and signer | Martin Willi | 2010-12-20 | 3 | -278/+39 |
| * | Use a generic AF_ALG wrapper for common operations | Martin Willi | 2010-12-20 | 3 | -0/+312 |
| * | Implemented crypter on top of AF_ALG | Martin Willi | 2010-12-20 | 4 | -1/+362 |
| * | Implemented signer interface using AF_ALG | Martin Willi | 2010-12-20 | 4 | -1/+334 |
| * | Implemented hasher based on AF_ALG | Martin Willi | 2010-12-20 | 4 | -2/+285 |
| * | Added plugin stub for AF_ALG | Martin Willi | 2010-12-20 | 3 | -0/+112 |
| * | trace back crypto algorithms to the plugins that registered them | Andreas Steffen | 2010-12-18 | 19 | -138/+176 |
