TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / c047c74b95b25e79f0638b51cadde192d521b910 / library / x509parse.c
  1. 0c2fa144 Fix invalid memory read in x509_get_sig() by Manuel Pégourié-Gonnard · 10 years ago
  2. 530927b Update copyright line to 2015 by Paul Bakker · 10 years ago
  3. 2dc15c8 Fix unchecked error on windows by Manuel Pégourié-Gonnard · 10 years ago
  4. e12abf9 Fix url by Manuel Pégourié-Gonnard · 11 years ago
  5. 0edee5e Update copyright notice by Manuel Pégourié-Gonnard · 11 years ago
  6. 4cdb3ba Add POLARSSL_X509_MAX_INTERMEDIATE_CA by Manuel Pégourié-Gonnard · 11 years ago
  7. 6a095d2 Make x509parse_crt() iterative by Manuel Pégourié-Gonnard · 11 years ago
  8. d8a1ea7 Fix potential buffer overread of size 1 by Manuel Pégourié-Gonnard · 11 years ago
  9. 017bf57 Forbid repeated X.509 extensions by Manuel Pégourié-Gonnard · 11 years ago
  10. 360eb91 Fix potential stack overflow by Manuel Pégourié-Gonnard · 11 years ago
  11. fdec957 Fix memory leak with crafted X.509 certs by Manuel Pégourié-Gonnard · 11 years ago
  12. 7d75ea4 x509_crt_parse() did not increase total_failed on PEM error by Manuel Pégourié-Gonnard · 11 years ago
  13. 6b44038 Fix memory leak parsing some X.509 certs by Manuel Pégourié-Gonnard · 11 years ago
  14. 1d073c5 Add static and casts to prevent compiler warnings by Paul Bakker · 11 years ago
  15. 243d618 Reject certificates with times not in UTC by Paul Bakker · 11 years ago
  16. f48de95 Use UTC to heck certificate validity by Paul Bakker · 11 years ago
  17. 358a841 x509_get_current_time() uses localtime_r() to prevent thread issues by Paul Bakker · 11 years ago
  18. 50a5c53 Reject certs and CRLs from the future by Paul Bakker · 11 years ago
  19. 0d844dd Add x509parse_time_future() by Paul Bakker · 11 years ago
  20. 7837026 Remove a few dead stores by Paul Bakker · 11 years ago
  21. 40cc914 Fixed x509_crt_parse_path() bug on Windows platforms by Paul Bakker · 11 years ago
  22. c941adb Fixed X.509 hostname comparison (with non-regular characters) by Paul Bakker · 11 years ago
  23. 9ccb211 Introduced POLARSSL_HAVE_READDIR_R for systems without it by Paul Bakker · 11 years ago
  24. 43f9799 RSA blinding on CRT operations to counter timing attacks by Paul Bakker · 12 years ago
  25. 88a2264 Fixed potential file descriptor leaks by Paul Bakker · 12 years ago
  26. f65fbee x509_verify() now case insensitive for cn (RFC 6125 6.4) by Paul Bakker · 12 years ago
  27. fe7c24c Fixed potential negative value misinterpretation in load_file() by Paul Bakker · 12 years ago
  28. 433fad2 Removed errant printf in x509parse_self_test() by Paul Bakker · 12 years ago
  29. da7fdbd Fixed minor comment typo by Paul Bakker · 12 years ago
  30. 14a222c Moved PKCS#12 PBE functions to cipher / md layer where possible by Paul Bakker · 12 years ago
  31. b495d3a x509parse_crt() and x509parse_crt_der() return X509 password related codes by Paul Bakker · 12 years ago
  32. 1fc7dfe Removed redundant free()s by Paul Bakker · 12 years ago
  33. 1fd4321 PKCS#5 v2 PBES2 support and use in PKCS#8 encrypted certificates by Paul Bakker · 12 years ago
  34. cbfcaa9 x509parse_crtpath() is now reentrant and uses more portable stat() by Paul Bakker · 12 years ago
  35. d6d4109 Changed x509parse_crt_der() to support adding to chain. by Paul Bakker · 12 years ago
  36. cf6e95d Parsing of PKCS#8 encrypted private key files added and PKCS#12 basis by Paul Bakker · 12 years ago
  37. 65a1909 Internally split up x509parse_key() by Paul Bakker · 12 years ago
  38. 6417186 x509parse_crt() now better handles PEM error situations by Paul Bakker · 12 years ago
  39. 9255e83 pem_read_buffer() already update use_len after header and footer are read by Paul Bakker · 12 years ago
  40. eae09db Fixed const correctness issues that have no impact on the ABI by Paul Bakker · 12 years ago
  41. 2ca8ad1 Made x509parse.c also work with missing hash header files by Paul Bakker · 12 years ago
  42. 3497d8c Do not check sig on trust-ca (might not be top) by Paul Bakker · 13 years ago
  43. 9a73632 - Merged changesets 1399 up to and including 1415 into 1.2 branch by Paul Bakker · 13 years ago
  44. 97872ac - Merged 1397 in branch for 1.2 by Paul Bakker · 13 years ago
  45. 4a2bd0d - Merged fixes 1394 and 1395 from trunk to PolarSSL 1.2 branch by Paul Bakker · 13 years ago
  46. 3338b79 - Fixed WIN32 version of x509parse_crtpath() by Paul Bakker · 13 years ago
  47. 5c2364c - Moved from unsigned long to uint32_t throughout code by Paul Bakker · 13 years ago
  48. 915275b - Revamped x509_verify() and the SSL f_vrfy callback implementations by Paul Bakker · 13 years ago
  49. b00ca42 - Handle existence of OpenSSL Trust Extensions at end of X.509 DER blob by Paul Bakker · 13 years ago
  50. 94a6796 - Correctly handle MS certificate's key usage bits by Paul Bakker · 13 years ago
  51. 535e97d - Better checking for reading over buffer boundaries by Paul Bakker · 13 years ago
  52. cefb396 - Handle empty certificate subject names by Paul Bakker · 13 years ago
  53. e4791f3 - Bugfix for Windows in cert path handling by Paul Bakker · 13 years ago
  54. 8d91458 - Added X509 CA Path support by Paul Bakker · 13 years ago
  55. 4d2c124 - Changed certificate verify behaviour to comply with RFC 6125 section 6.3 to not match CN if subjectAltName extension is present. by Paul Bakker · 13 years ago
  56. 430ffbe - Fixed potential heap corruption in x509_name allocation by Paul Bakker · 13 years ago
  57. ad8d354 - Updated RFC ref by Paul Bakker · 13 years ago
  58. 8afa70d - Clean Subject Alternative Name data by Paul Bakker · 13 years ago
  59. 57b1298 - Multi-domain certificates support wildcards as well by Paul Bakker · 13 years ago
  60. a8cd239 - Added support for wildcard certificates by Paul Bakker · 13 years ago
  61. b15b851 - Check for failed malloc() in ssl_set_hostname() and x509_get_entries() (Closes ticket #47, found by Hugo Leisink) by Paul Bakker · 14 years ago
  62. 69e095c - Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. by Paul Bakker · 14 years ago
  63. 9304880 - Fixed correct printing of serial number '00' by Paul Bakker · 14 years ago
  64. c8ffbe7 - Corrected removal of leading '00:' in printing serial numbers in certificates and CRLs by Paul Bakker · 14 years ago
  65. 4f229e5 - Fixed define for Windows time functions by Paul Bakker · 14 years ago
  66. 6c0ceb3 - Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error by Paul Bakker · 14 years ago
  67. 03c7c25 - * If certificate serial is longer than 32 octets, serial number is now appended with '....' after first 28 octets by Paul Bakker · 14 years ago
  68. cce9d77 - Lots of minimal changes to better support WINCE as a build target by Paul Bakker · 14 years ago
  69. cebdf17 - Allowed X509 key usage parsing to accept 4 byte values instead of the standard 1 byte version sometimes used by Microsoft. (Closes ticket #38) by Paul Bakker · 14 years ago
  70. efc3029 - Extracted ASN.1 parsing code from the X.509 parsing code. Added new module. by Paul Bakker · 14 years ago
  71. 2a1c5f5 - Minor code cleanup by Paul Bakker · 14 years ago
  72. fae618f - Updated tests to reflect recent changes by Paul Bakker · 14 years ago
  73. b5a11ab - Added a separate CRL entry extension parsing function by Paul Bakker · 14 years ago
  74. fbc09f3 - Added an EXPLICIT tag number parameter to x509_get_ext() by Paul Bakker · 14 years ago
  75. 3329d1f - Fixed a bug where the CRL parser expected an EXPLICIT ASN.1 tag before version numbers by Paul Bakker · 14 years ago
  76. c4909d9 - Inceased maximum size of ASN1 length reads to 32-bits by Paul Bakker · 14 years ago
  77. 5c721f9 - Introduced POLARSSL_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION flag to continue parsing when encountering a critical flag that's not supported by PolarSSL by Paul Bakker · 14 years ago
  78. ed56b22 - Added support for PKCS#8 wrapper on reading private keys (Fixes ticket #20) by Paul Bakker · 14 years ago
  79. 684ddce - Minor fixer to remove compiler warnings for ARMCC by Paul Bakker · 14 years ago
  80. 27fdf46 - Removed deprecated casts to int for now unsigned values by Paul Bakker · 14 years ago
  81. 5690efc - Fixed a whole bunch of dependencies on defines between files, examples and tests by Paul Bakker · 14 years ago
  82. 9d78140 - A error_strerror function() has been added to translate between error codes and their description. by Paul Bakker · 14 years ago
  83. 335db3f - Functions requiring File System functions can now be disables by undefining POLARSSL_FS_IO by Paul Bakker · 14 years ago
  84. f4f6968 - Improved compile-time compatibility with mingw32 64-bit versions by Paul Bakker · 14 years ago
  85. 23986e5 - Major type rewrite of int to size_t for most variables and arguments used for buffer lengths and loops by Paul Bakker · 14 years ago
  86. eaa89f8 - Do not depend on dhm code if POLARSSL_DHM_C not defined by Paul Bakker · 14 years ago
  87. 66b78b2 - Added missing rsa_init() call in x509parse_self_test() by Paul Bakker · 14 years ago
  88. 53019ae - RSASSA-PSS verification now properly handles salt lengths other than hlen by Paul Bakker · 14 years ago
  89. 400ff6f - Corrected parsing of UTCTime dates before 1990 and after 1950 by Paul Bakker · 14 years ago
  90. 96743fc - Parsing of PEM files moved to separate module (Fixes ticket #13). Also possible to remove PEM support for systems only using DER encoding by Paul Bakker · 14 years ago
  91. d61e7d9 - Cleaned up warning-generating code by Paul Bakker · 15 years ago
  92. 0f5f72e - Fixed doxygen syntax to standard '\' instead of '@' by Paul Bakker · 15 years ago
  93. 3cccddb - Fixed identification of non-critical CA certificates by Paul Bakker · 15 years ago
  94. b619499 - x509parse_time_expired() checks time now in addition to the existing date check by Paul Bakker · 15 years ago
  95. a056efc - Fixed serial length check by Paul Bakker · 15 years ago
  96. dd47699 - Moved storing of a printable serial into a separate function by Paul Bakker · 15 years ago
  97. 76fd75a - Improved certificate validation and validation against the available CRLs by Paul Bakker · 15 years ago
  98. 74111d3 - Improved X509 certificate parsing to include extended certificate fields, such as Key Usage by Paul Bakker · 15 years ago
  99. b63b0af - Added verification callback in certificate verification chain in order to allow external blacklisting by Paul Bakker · 15 years ago
  100. 1b57b06 - Added reading of DHM context from memory and file by Paul Bakker · 15 years ago