summaryrefslogtreecommitdiff
path: root/lib/x509/verify.c
Commit message (Expand)AuthorAgeFilesLines
* gnutls_x509_crl_verify: always return zero on successNikos Mavrogiannopoulos2016-12-011-1/+6
* several spacing fixes to keep syntax-check happyNikos Mavrogiannopoulos2016-09-111-7/+7
* verify_crt: simplified error settingNikos Mavrogiannopoulos2016-07-281-74/+35
* verify_crt: removed text on parameter no longer being presentNikos Mavrogiannopoulos2016-07-281-1/+1
* enhanced debugging messages for cert verificationNikos Mavrogiannopoulos2016-06-221-0/+1
* During PKIX chain verification check the TLSFeatures complianceNikos Mavrogiannopoulos2016-06-141-0/+29
* verify_crt: moved all verification state into a common structureNikos Mavrogiannopoulos2016-06-141-33/+37
* _gnutls_check_key_purpose: in CA certificates treat the SGC key purpose as GN...Nikos Mavrogiannopoulos2016-06-021-0/+28
* several sign-related API changesNikos Mavrogiannopoulos2016-05-311-8/+9
* x509: replace the bool type with the unsigned typeNikos Mavrogiannopoulos2016-05-311-15/+14
* exported gnutls_x509_crt_equals() and gnutls_x509_crt_equals2()Nikos Mavrogiannopoulos2016-05-021-36/+2
* gnutls_x509_crt_get_key_usage: ensure that its returned value is properly han...Nikos Mavrogiannopoulos2016-04-111-4/+11
* Removed the 'gnutls_' prefix from files to simplify file namingNikos Mavrogiannopoulos2015-08-231-8/+8
* removed gnutls_pubkey_get_verify_algorithm() and unnecessary internal APIsNikos Mavrogiannopoulos2015-02-211-14/+0
* doc updateNikos Mavrogiannopoulos2015-01-121-0/+3
* removed flag GNUTLS_VERIFY_KEY_PURPOSE_ON_INTERMEDIATENikos Mavrogiannopoulos2014-10-091-1/+1
* Verify key purpose on intermediate certificate if GNUTLS_VERIFY_KEY_PURPOSE_O...Nikos Mavrogiannopoulos2014-09-221-16/+34
* updated details on certificate verificationNikos Mavrogiannopoulos2014-09-181-5/+7
* Check for all error conditions when verifying a certificateArmin Burgmeier2014-09-181-239/+224
* removed unneeded set of statusNikos Mavrogiannopoulos2014-09-171-1/+0
* pkcs11: when a signer isn't found in PKCS #11 force the verification of the c...Nikos Mavrogiannopoulos2014-09-171-0/+5
* unified the key purpose checks functionsNikos Mavrogiannopoulos2014-09-161-4/+6
* check for CAs with the same key in gnutls_x509_trust_list_add_casNikos Mavrogiannopoulos2014-09-161-1/+1
* gnutls_x509_crl_verify: do not always set the invalid statusNikos Mavrogiannopoulos2014-09-131-1/+9
* Revert "gnutls_x509_crl_verify: do not always set the invalid status"Nikos Mavrogiannopoulos2014-09-131-1/+1
* gnutls_x509_crl_verify: do not always set the invalid statusNikos Mavrogiannopoulos2014-09-131-1/+1
* check the key purpose of the CA certificate when in pkcs11 cert validationNikos Mavrogiannopoulos2014-09-111-1/+47
* when comparing an end-certificate with the trusted list compare the entire ce...Nikos Mavrogiannopoulos2014-09-031-8/+20
* when comparing a CA certificate with the trusted list compare the name and keyNikos Mavrogiannopoulos2014-09-021-3/+51
* when importing a CRL keep the DER dataNikos Mavrogiannopoulos2014-08-291-1/+1
* when importing a certificate, keep the DER dataNikos Mavrogiannopoulos2014-08-291-38/+8
* only check name constraints in non-CA certificatesNikos Mavrogiannopoulos2014-08-261-26/+32
* Added the 'very weak' certificate verification profile.Nikos Mavrogiannopoulos2014-05-051-0/+1
* Perform time check when removing a certificate in _gnutls_pkcs11_verify_crt_s...Nikos Mavrogiannopoulos2014-04-041-0/+19
* When verifying, check for the same certificate in the pkcs11 trusted list, no...Nikos Mavrogiannopoulos2014-04-041-0/+10
* use commit suffix for functions that return a status code.Nikos Mavrogiannopoulos2014-03-211-9/+9
* re-enabled certificate verificationNikos Mavrogiannopoulos2014-03-081-1/+5
* more type separationNikos Mavrogiannopoulos2014-03-071-7/+12
* more type separationNikos Mavrogiannopoulos2014-03-071-8/+9
* separated types for easier verificationNikos Mavrogiannopoulos2014-03-071-26/+29
* Preinitialize values; suggested by Sebastian Krahmer and Tomas Hoger.Nikos Mavrogiannopoulos2014-02-271-2/+2
* added doc on is_issuer() checksNikos Mavrogiannopoulos2014-02-271-0/+4
* Updated verification functionNikos Mavrogiannopoulos2014-02-251-22/+33
* check against the success valueNikos Mavrogiannopoulos2014-02-201-3/+3
* use bool types when needed.Nikos Mavrogiannopoulos2014-02-191-8/+9
* ensure failure when parsing fails.Nikos Mavrogiannopoulos2014-02-191-5/+6
* Added check for IPaddressNikos Mavrogiannopoulos2014-02-191-0/+6
* simplify namesNikos Mavrogiannopoulos2014-02-191-3/+3
* Verify name constraints.Nikos Mavrogiannopoulos2014-02-191-9/+67
* removed deprecated flagNikos Mavrogiannopoulos2014-02-141-1/+0