TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / f73b718f172502651faa35d3a78edcf6c550f528 / library / x509parse.c
  1. 243d618 Reject certificates with times not in UTC by Paul Bakker · 11 years ago
  2. f48de95 Use UTC to heck certificate validity by Paul Bakker · 11 years ago
  3. 358a841 x509_get_current_time() uses localtime_r() to prevent thread issues by Paul Bakker · 11 years ago
  4. 50a5c53 Reject certs and CRLs from the future by Paul Bakker · 11 years ago
  5. 0d844dd Add x509parse_time_future() by Paul Bakker · 11 years ago
  6. 7837026 Remove a few dead stores by Paul Bakker · 11 years ago
  7. 40cc914 Fixed x509_crt_parse_path() bug on Windows platforms by Paul Bakker · 11 years ago
  8. c941adb Fixed X.509 hostname comparison (with non-regular characters) by Paul Bakker · 11 years ago
  9. 9ccb211 Introduced POLARSSL_HAVE_READDIR_R for systems without it by Paul Bakker · 11 years ago
  10. 43f9799 RSA blinding on CRT operations to counter timing attacks by Paul Bakker · 12 years ago
  11. 88a2264 Fixed potential file descriptor leaks by Paul Bakker · 12 years ago
  12. f65fbee x509_verify() now case insensitive for cn (RFC 6125 6.4) by Paul Bakker · 12 years ago
  13. fe7c24c Fixed potential negative value misinterpretation in load_file() by Paul Bakker · 12 years ago
  14. 433fad2 Removed errant printf in x509parse_self_test() by Paul Bakker · 12 years ago
  15. da7fdbd Fixed minor comment typo by Paul Bakker · 12 years ago
  16. 14a222c Moved PKCS#12 PBE functions to cipher / md layer where possible by Paul Bakker · 12 years ago
  17. b495d3a x509parse_crt() and x509parse_crt_der() return X509 password related codes by Paul Bakker · 12 years ago
  18. 1fc7dfe Removed redundant free()s by Paul Bakker · 12 years ago
  19. 1fd4321 PKCS#5 v2 PBES2 support and use in PKCS#8 encrypted certificates by Paul Bakker · 12 years ago
  20. cbfcaa9 x509parse_crtpath() is now reentrant and uses more portable stat() by Paul Bakker · 12 years ago
  21. d6d4109 Changed x509parse_crt_der() to support adding to chain. by Paul Bakker · 12 years ago
  22. cf6e95d Parsing of PKCS#8 encrypted private key files added and PKCS#12 basis by Paul Bakker · 12 years ago
  23. 65a1909 Internally split up x509parse_key() by Paul Bakker · 12 years ago
  24. 6417186 x509parse_crt() now better handles PEM error situations by Paul Bakker · 12 years ago
  25. 9255e83 pem_read_buffer() already update use_len after header and footer are read by Paul Bakker · 12 years ago
  26. eae09db Fixed const correctness issues that have no impact on the ABI by Paul Bakker · 12 years ago
  27. 2ca8ad1 Made x509parse.c also work with missing hash header files by Paul Bakker · 12 years ago
  28. 3497d8c Do not check sig on trust-ca (might not be top) by Paul Bakker · 13 years ago
  29. 9a73632 - Merged changesets 1399 up to and including 1415 into 1.2 branch by Paul Bakker · 13 years ago
  30. 97872ac - Merged 1397 in branch for 1.2 by Paul Bakker · 13 years ago
  31. 4a2bd0d - Merged fixes 1394 and 1395 from trunk to PolarSSL 1.2 branch by Paul Bakker · 13 years ago
  32. 3338b79 - Fixed WIN32 version of x509parse_crtpath() by Paul Bakker · 13 years ago
  33. 5c2364c - Moved from unsigned long to uint32_t throughout code by Paul Bakker · 13 years ago
  34. 915275b - Revamped x509_verify() and the SSL f_vrfy callback implementations by Paul Bakker · 13 years ago
  35. b00ca42 - Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob by Paul Bakker · 13 years ago
  36. 94a6796 - Correctly handle MS certificate's key usage bits by Paul Bakker · 13 years ago
  37. 535e97d - Better checking for reading over buffer boundaries by Paul Bakker · 13 years ago
  38. cefb396 - Handle empty certificate subject names by Paul Bakker · 13 years ago
  39. e4791f3 - Bugfix for Windows in cert path handling by Paul Bakker · 13 years ago
  40. 8d91458 - Added X509 CA Path support by Paul Bakker · 13 years ago
  41. 4d2c124 - Changed certificate verify behaviour to comply with RFC 6125 section 6.3 to not match CN if subjectAltName extension is present. by Paul Bakker · 13 years ago
  42. 430ffbe - Fixed potential heap corruption in x509_name allocation by Paul Bakker · 13 years ago
  43. ad8d354 - Updated RFC ref by Paul Bakker · 13 years ago
  44. 8afa70d - Clean Subject Alternative Name data by Paul Bakker · 13 years ago
  45. 57b1298 - Multi-domain certificates support wildcards as well by Paul Bakker · 13 years ago
  46. a8cd239 - Added support for wildcard certificates by Paul Bakker · 13 years ago
  47. b15b851 - Check for failed malloc() in ssl_set_hostname() and x509_get_entries() (Closes ticket #47, found by Hugo Leisink) by Paul Bakker · 14 years ago
  48. 69e095c - Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. by Paul Bakker · 14 years ago
  49. 9304880 - Fixed correct printing of serial number '00' by Paul Bakker · 14 years ago
  50. c8ffbe7 - Corrected removal of leading '00:' in printing serial numbers in certificates and CRLs by Paul Bakker · 14 years ago
  51. 4f229e5 - Fixed define for Windows time functions by Paul Bakker · 14 years ago
  52. 6c0ceb3 - Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error by Paul Bakker · 14 years ago
  53. 03c7c25 - * If certificate serial is longer than 32 octets, serial number is now appended with '....' after first 28 octets by Paul Bakker · 14 years ago
  54. cce9d77 - Lots of minimal changes to better support WINCE as a build target by Paul Bakker · 14 years ago
  55. cebdf17 - Allowed X509 key usage parsing to accept 4 byte values instead of the standard 1 byte version sometimes used by Microsoft. (Closes ticket #38) by Paul Bakker · 14 years ago
  56. efc3029 - Extracted ASN.1 parsing code from the X.509 parsing code. Added new module. by Paul Bakker · 14 years ago
  57. 2a1c5f5 - Minor code cleanup by Paul Bakker · 14 years ago
  58. fae618f - Updated tests to reflect recent changes by Paul Bakker · 14 years ago
  59. b5a11ab - Added a separate CRL entry extension parsing function by Paul Bakker · 14 years ago
  60. fbc09f3 - Added an EXPLICIT tag number parameter to x509_get_ext() by Paul Bakker · 14 years ago
  61. 3329d1f - Fixed a bug where the CRL parser expected an EXPLICIT ASN.1 tag before version numbers by Paul Bakker · 14 years ago
  62. c4909d9 - Inceased maximum size of ASN1 length reads to 32-bits by Paul Bakker · 14 years ago
  63. 5c721f9 - Introduced POLARSSL_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION flag to continue parsing when encountering a critical flag that's not supported by PolarSSL by Paul Bakker · 14 years ago
  64. ed56b22 - Added support for PKCS#8 wrapper on reading private keys (Fixes ticket #20) by Paul Bakker · 14 years ago
  65. 684ddce - Minor fixer to remove compiler warnings for ARMCC by Paul Bakker · 14 years ago
  66. 27fdf46 - Removed deprecated casts to int for now unsigned values by Paul Bakker · 14 years ago
  67. 5690efc - Fixed a whole bunch of dependencies on defines between files, examples and tests by Paul Bakker · 14 years ago
  68. 9d78140 - A error_strerror function() has been added to translate between error codes and their description. by Paul Bakker · 14 years ago
  69. 335db3f - Functions requiring File System functions can now be disables by undefining POLARSSL_FS_IO by Paul Bakker · 14 years ago
  70. f4f6968 - Improved compile-time compatibility with mingw32 64-bit versions by Paul Bakker · 14 years ago
  71. 23986e5 - Major type rewrite of int to size_t for most variables and arguments used for buffer lengths and loops by Paul Bakker · 14 years ago
  72. eaa89f8 - Do not depend on dhm code if POLARSSL_DHM_C not defined by Paul Bakker · 14 years ago
  73. 66b78b2 - Added missing rsa_init() call in x509parse_self_test() by Paul Bakker · 14 years ago
  74. 53019ae - RSASSA-PSS verification now properly handles salt lengths other than hlen by Paul Bakker · 14 years ago
  75. 400ff6f - Corrected parsing of UTCTime dates before 1990 and after 1950 by Paul Bakker · 14 years ago
  76. 96743fc - Parsing of PEM files moved to separate module (Fixes ticket #13). Also possible to remove PEM support for systems only using DER encoding by Paul Bakker · 14 years ago
  77. d61e7d9 - Cleaned up warning-generating code by Paul Bakker · 15 years ago
  78. 0f5f72e - Fixed doxygen syntax to standard '\' instead of '@' by Paul Bakker · 15 years ago
  79. 3cccddb - Fixed identification of non-critical CA certificates by Paul Bakker · 15 years ago
  80. b619499 - x509parse_time_expired() checks time now in addition to the existing date check by Paul Bakker · 15 years ago
  81. a056efc - Fixed serial length check by Paul Bakker · 15 years ago
  82. dd47699 - Moved storing of a printable serial into a separate function by Paul Bakker · 15 years ago
  83. 76fd75a - Improved certificate validation and validation against the available CRLs by Paul Bakker · 15 years ago
  84. 74111d3 - Improved X509 certificate parsing to include extended certificate fields, such as Key Usage by Paul Bakker · 15 years ago
  85. b63b0af - Added verification callback in certificate verification chain in order to allow external blacklisting by Paul Bakker · 15 years ago
  86. 1b57b06 - Added reading of DHM context from memory and file by Paul Bakker · 15 years ago
  87. b96f154 - Fixed copyright message by Paul Bakker · 15 years ago
  88. 84f12b7 - Updated Copyright to correct entity by Paul Bakker · 15 years ago
  89. fc8c436 - Updated copyright line to 2010 by Paul Bakker · 15 years ago
  90. 1f3c39c - Removed copyright line for Christophe Devine for clarity by Paul Bakker · 15 years ago
  91. 27d6616 - Added x509_get_sig_alg() to allow easy future X509 signature algorithm determination expansion by Paul Bakker · 15 years ago
  92. ff60ee6 - Added const-correctness to main codebase by Paul Bakker · 15 years ago
  93. 9120018 - Added support for GeneralizedTime in X509 certificates by Paul Bakker · 15 years ago
  94. fe1aea7 - Fixed typo in MD4 define by Paul Bakker · 16 years ago
  95. de4d2ea - Added handling of missing POLARSSL_MD5_C define and POLARSSL_SHA1_c define by Paul Bakker · 16 years ago
  96. 77b385e - Updated copyright messages on all relevant files by Paul Bakker · 16 years ago
  97. c6ce838 - Better handling of extension parsing by Paul Bakker · 16 years ago
  98. 9be1937 - Fill base data for x509_crl_entry in CRL correctly by Paul Bakker · 16 years ago
  99. 635f4b4 - Updated error check on optional nextUpdate in CRL by Paul Bakker · 16 years ago
  100. 1e27bb2 - Added newline at end of CRL info by Paul Bakker · 16 years ago