TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / 5388eea449a132362bdd4e89ec30c7e1bb51aeee / library / x509parse.c
  1. 80e6cff Fix potential heap corruption on Windows by Manuel Pégourié-Gonnard · 10 years ago
  2. 0c2fa144 Fix invalid memory read in x509_get_sig() by Manuel Pégourié-Gonnard · 10 years ago
  3. 530927b Update copyright line to 2015 by Paul Bakker · 10 years ago
  4. 2dc15c8 Fix unchecked error on windows by Manuel Pégourié-Gonnard · 10 years ago
  5. e12abf9 Fix url by Manuel Pégourié-Gonnard · 11 years ago
  6. 0edee5e Update copyright notice by Manuel Pégourié-Gonnard · 11 years ago
  7. 4cdb3ba Add POLARSSL_X509_MAX_INTERMEDIATE_CA by Manuel Pégourié-Gonnard · 11 years ago
  8. 6a095d2 Make x509parse_crt() iterative by Manuel Pégourié-Gonnard · 11 years ago
  9. d8a1ea7 Fix potential buffer overread of size 1 by Manuel Pégourié-Gonnard · 11 years ago
  10. 017bf57 Forbid repeated X.509 extensions by Manuel Pégourié-Gonnard · 11 years ago
  11. 360eb91 Fix potential stack overflow by Manuel Pégourié-Gonnard · 11 years ago
  12. fdec957 Fix memory leak with crafted X.509 certs by Manuel Pégourié-Gonnard · 11 years ago
  13. 7d75ea4 x509_crt_parse() did not increase total_failed on PEM error by Manuel Pégourié-Gonnard · 11 years ago
  14. 6b44038 Fix memory leak parsing some X.509 certs by Manuel Pégourié-Gonnard · 11 years ago
  15. 1d073c5 Add static and casts to prevent compiler warnings by Paul Bakker · 11 years ago
  16. 243d618 Reject certificates with times not in UTC by Paul Bakker · 11 years ago
  17. f48de95 Use UTC to heck certificate validity by Paul Bakker · 11 years ago
  18. 358a841 x509_get_current_time() uses localtime_r() to prevent thread issues by Paul Bakker · 11 years ago
  19. 50a5c53 Reject certs and CRLs from the future by Paul Bakker · 11 years ago
  20. 0d844dd Add x509parse_time_future() by Paul Bakker · 11 years ago
  21. 7837026 Remove a few dead stores by Paul Bakker · 11 years ago
  22. 40cc914 Fixed x509_crt_parse_path() bug on Windows platforms by Paul Bakker · 11 years ago
  23. c941adb Fixed X.509 hostname comparison (with non-regular characters) by Paul Bakker · 11 years ago
  24. 9ccb211 Introduced POLARSSL_HAVE_READDIR_R for systems without it by Paul Bakker · 11 years ago
  25. 43f9799 RSA blinding on CRT operations to counter timing attacks by Paul Bakker · 12 years ago
  26. 88a2264 Fixed potential file descriptor leaks by Paul Bakker · 12 years ago
  27. f65fbee x509_verify() now case insensitive for cn (RFC 6125 6.4) by Paul Bakker · 12 years ago
  28. fe7c24c Fixed potential negative value misinterpretation in load_file() by Paul Bakker · 12 years ago
  29. 433fad2 Removed errant printf in x509parse_self_test() by Paul Bakker · 12 years ago
  30. da7fdbd Fixed minor comment typo by Paul Bakker · 12 years ago
  31. 14a222c Moved PKCS#12 PBE functions to cipher / md layer where possible by Paul Bakker · 12 years ago
  32. b495d3a x509parse_crt() and x509parse_crt_der() return X509 password related codes by Paul Bakker · 12 years ago
  33. 1fc7dfe Removed redundant free()s by Paul Bakker · 12 years ago
  34. 1fd4321 PKCS#5 v2 PBES2 support and use in PKCS#8 encrypted certificates by Paul Bakker · 12 years ago
  35. cbfcaa9 x509parse_crtpath() is now reentrant and uses more portable stat() by Paul Bakker · 12 years ago
  36. d6d4109 Changed x509parse_crt_der() to support adding to chain. by Paul Bakker · 12 years ago
  37. cf6e95d Parsing of PKCS#8 encrypted private key files added and PKCS#12 basis by Paul Bakker · 12 years ago
  38. 65a1909 Internally split up x509parse_key() by Paul Bakker · 12 years ago
  39. 6417186 x509parse_crt() now better handles PEM error situations by Paul Bakker · 12 years ago
  40. 9255e83 pem_read_buffer() already update use_len after header and footer are read by Paul Bakker · 12 years ago
  41. eae09db Fixed const correctness issues that have no impact on the ABI by Paul Bakker · 12 years ago
  42. 2ca8ad1 Made x509parse.c also work with missing hash header files by Paul Bakker · 12 years ago
  43. 3497d8c Do not check sig on trust-ca (might not be top) by Paul Bakker · 13 years ago
  44. 9a73632 - Merged changesets 1399 up to and including 1415 into 1.2 branch by Paul Bakker · 13 years ago
  45. 97872ac - Merged 1397 in branch for 1.2 by Paul Bakker · 13 years ago
  46. 4a2bd0d - Merged fixes 1394 and 1395 from trunk to PolarSSL 1.2 branch by Paul Bakker · 13 years ago
  47. 3338b79 - Fixed WIN32 version of x509parse_crtpath() by Paul Bakker · 13 years ago
  48. 5c2364c - Moved from unsigned long to uint32_t throughout code by Paul Bakker · 13 years ago
  49. 915275b - Revamped x509_verify() and the SSL f_vrfy callback implementations by Paul Bakker · 13 years ago
  50. b00ca42 - Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob by Paul Bakker · 13 years ago
  51. 94a6796 - Correctly handle MS certificate's key usage bits by Paul Bakker · 13 years ago
  52. 535e97d - Better checking for reading over buffer boundaries by Paul Bakker · 13 years ago
  53. cefb396 - Handle empty certificate subject names by Paul Bakker · 13 years ago
  54. e4791f3 - Bugfix for Windows in cert path handling by Paul Bakker · 13 years ago
  55. 8d91458 - Added X509 CA Path support by Paul Bakker · 13 years ago
  56. 4d2c124 - Changed certificate verify behaviour to comply with RFC 6125 section 6.3 to not match CN if subjectAltName extension is present. by Paul Bakker · 13 years ago
  57. 430ffbe - Fixed potential heap corruption in x509_name allocation by Paul Bakker · 13 years ago
  58. ad8d354 - Updated RFC ref by Paul Bakker · 13 years ago
  59. 8afa70d - Clean Subject Alternative Name data by Paul Bakker · 13 years ago
  60. 57b1298 - Multi-domain certificates support wildcards as well by Paul Bakker · 13 years ago
  61. a8cd239 - Added support for wildcard certificates by Paul Bakker · 13 years ago
  62. b15b851 - Check for failed malloc() in ssl_set_hostname() and x509_get_entries() (Closes ticket #47, found by Hugo Leisink) by Paul Bakker · 14 years ago
  63. 69e095c - Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. by Paul Bakker · 14 years ago
  64. 9304880 - Fixed correct printing of serial number '00' by Paul Bakker · 14 years ago
  65. c8ffbe7 - Corrected removal of leading '00:' in printing serial numbers in certificates and CRLs by Paul Bakker · 14 years ago
  66. 4f229e5 - Fixed define for Windows time functions by Paul Bakker · 14 years ago
  67. 6c0ceb3 - Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error by Paul Bakker · 14 years ago
  68. 03c7c25 - * If certificate serial is longer than 32 octets, serial number is now appended with '....' after first 28 octets by Paul Bakker · 14 years ago
  69. cce9d77 - Lots of minimal changes to better support WINCE as a build target by Paul Bakker · 14 years ago
  70. cebdf17 - Allowed X509 key usage parsing to accept 4 byte values instead of the standard 1 byte version sometimes used by Microsoft. (Closes ticket #38) by Paul Bakker · 14 years ago
  71. efc3029 - Extracted ASN.1 parsing code from the X.509 parsing code. Added new module. by Paul Bakker · 14 years ago
  72. 2a1c5f5 - Minor code cleanup by Paul Bakker · 14 years ago
  73. fae618f - Updated tests to reflect recent changes by Paul Bakker · 14 years ago
  74. b5a11ab - Added a separate CRL entry extension parsing function by Paul Bakker · 14 years ago
  75. fbc09f3 - Added an EXPLICIT tag number parameter to x509_get_ext() by Paul Bakker · 14 years ago
  76. 3329d1f - Fixed a bug where the CRL parser expected an EXPLICIT ASN.1 tag before version numbers by Paul Bakker · 14 years ago
  77. c4909d9 - Inceased maximum size of ASN1 length reads to 32-bits by Paul Bakker · 14 years ago
  78. 5c721f9 - Introduced POLARSSL_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION flag to continue parsing when encountering a critical flag that's not supported by PolarSSL by Paul Bakker · 14 years ago
  79. ed56b22 - Added support for PKCS#8 wrapper on reading private keys (Fixes ticket #20) by Paul Bakker · 14 years ago
  80. 684ddce - Minor fixer to remove compiler warnings for ARMCC by Paul Bakker · 14 years ago
  81. 27fdf46 - Removed deprecated casts to int for now unsigned values by Paul Bakker · 14 years ago
  82. 5690efc - Fixed a whole bunch of dependencies on defines between files, examples and tests by Paul Bakker · 14 years ago
  83. 9d78140 - A error_strerror function() has been added to translate between error codes and their description. by Paul Bakker · 14 years ago
  84. 335db3f - Functions requiring File System functions can now be disables by undefining POLARSSL_FS_IO by Paul Bakker · 14 years ago
  85. f4f6968 - Improved compile-time compatibility with mingw32 64-bit versions by Paul Bakker · 14 years ago
  86. 23986e5 - Major type rewrite of int to size_t for most variables and arguments used for buffer lengths and loops by Paul Bakker · 14 years ago
  87. eaa89f8 - Do not depend on dhm code if POLARSSL_DHM_C not defined by Paul Bakker · 14 years ago
  88. 66b78b2 - Added missing rsa_init() call in x509parse_self_test() by Paul Bakker · 14 years ago
  89. 53019ae - RSASSA-PSS verification now properly handles salt lengths other than hlen by Paul Bakker · 14 years ago
  90. 400ff6f - Corrected parsing of UTCTime dates before 1990 and after 1950 by Paul Bakker · 14 years ago
  91. 96743fc - Parsing of PEM files moved to separate module (Fixes ticket #13). Also possible to remove PEM support for systems only using DER encoding by Paul Bakker · 14 years ago
  92. d61e7d9 - Cleaned up warning-generating code by Paul Bakker · 15 years ago
  93. 0f5f72e - Fixed doxygen syntax to standard '\' instead of '@' by Paul Bakker · 15 years ago
  94. 3cccddb - Fixed identification of non-critical CA certificates by Paul Bakker · 15 years ago
  95. b619499 - x509parse_time_expired() checks time now in addition to the existing date check by Paul Bakker · 15 years ago
  96. a056efc - Fixed serial length check by Paul Bakker · 15 years ago
  97. dd47699 - Moved storing of a printable serial into a separate function by Paul Bakker · 15 years ago
  98. 76fd75a - Improved certificate validation and validation against the available CRLs by Paul Bakker · 15 years ago
  99. 74111d3 - Improved X509 certificate parsing to include extended certificate fields, such as Key Usage by Paul Bakker · 15 years ago
  100. b63b0af - Added verification callback in certificate verification chain in order to allow external blacklisting by Paul Bakker · 15 years ago