summaryrefslogtreecommitdiff
path: root/lib/x509
Commit message (Expand)AuthorAgeFilesLines
* combined gnutls_pkcs11_obj_attr_t with gnutls_pkcs11_obj_flagsNikos Mavrogiannopoulos2014-12-222-4/+6
* first attempt to unify obj_attrs with obj_flagsNikos Mavrogiannopoulos2014-12-211-2/+2
* Directly import PKCS #11 object URLs as trusted certificatesNikos Mavrogiannopoulos2014-12-211-14/+125
* use gnutls_x509_trust_list_verify_named_crt in gnutls_x509_trust_list_verify_...Nikos Mavrogiannopoulos2014-12-121-8/+32
* gnutls_pkcs12_simple_parse: doc updateNikos Mavrogiannopoulos2014-12-121-1/+1
* corrected typoNikos Mavrogiannopoulos2014-12-081-1/+1
* _gnutls_buffer_to_datum: includes code for exporting stringsNikos Mavrogiannopoulos2014-12-053-60/+10
* when the trusted list contains a non-CA certificate warn via the audit logNikos Mavrogiannopoulos2014-12-051-0/+12
* removed gnutls_x509_crt_verify_hash() and gnutls_x509_crt_verify_data()Nikos Mavrogiannopoulos2014-12-031-96/+0
* Reorganized, and eliminated memory leak in _gnutls_x509_crt_check_revocation()Nikos Mavrogiannopoulos2014-11-301-13/+15
* GNUTLS_E_CERTIFICATE_LIST_UNSORTED can be returned from gnutls_pcert_import_x...Nikos Mavrogiannopoulos2014-11-273-35/+36
* Added flag GNUTLS_X509_CRT_LIST_SORT for gnutls_x509_crt_list_import*Nikos Mavrogiannopoulos2014-11-274-61/+97
* corrected freeing of custom URLNikos Mavrogiannopoulos2014-11-231-2/+4
* Added the ability to register application specific URLs for keys and certsNikos Mavrogiannopoulos2014-11-231-2/+11
* deinitialize the OCSP response der dataNikos Mavrogiannopoulos2014-11-211-15/+23
* prior to importing objects with URLs sanitize themNikos Mavrogiannopoulos2014-11-201-5/+15
* Added API to read/write/delete key-cert pairs (limited to windows for now)Nikos Mavrogiannopoulos2014-11-192-1/+36
* only print about additional certificates if they are presentNikos Mavrogiannopoulos2014-11-141-1/+3
* ocsp: fix DN decoding in gnutls_ocsp_resp_get_responder_raw_idNikos Mavrogiannopoulos2014-11-141-3/+41
* use the original DER/BER data when verifying an OCSP responseNikos Mavrogiannopoulos2014-11-141-8/+4
* ocsp: eliminated duplicate codeNikos Mavrogiannopoulos2014-11-141-26/+3
* updated OCSP verification code to better use the trust list, and the KeyHashNikos Mavrogiannopoulos2014-11-141-71/+90
* OCSP printing: Add header in front of certificatesNikos Mavrogiannopoulos2014-11-141-0/+1
* added gnutls_pkcs11_get_raw_issuer_by_dn and gnutls_x509_trust_list_get_issue...Nikos Mavrogiannopoulos2014-11-141-0/+85
* replaced gnutls_ocsp_resp_get_responder_by_key with gnutls_ocsp_resp_get_resp...Nikos Mavrogiannopoulos2014-11-132-11/+18
* gnutls_x509_privkey_import2: will not use a callback if GNUTLS_PKCS_PLAIN is ...Nikos Mavrogiannopoulos2014-11-131-1/+1
* doc update and gnutls_ocsp_resp_get_responder() will always initialized outpu...Nikos Mavrogiannopoulos2014-11-131-1/+4
* corrected documentation of OCSP response verificationNikos Mavrogiannopoulos2014-11-131-2/+2
* Added gnutls_ocsp_resp_get_responder_by_key()Nikos Mavrogiannopoulos2014-11-132-9/+55
* dn parsing: return GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE when DN is not avail...Nikos Mavrogiannopoulos2014-11-131-2/+7
* Enable PIN support to gnutls_x509_privkey_tNikos Mavrogiannopoulos2014-11-122-1/+43
* _gnutls_ucs2_to_utf8() can handle little endian strings.Nikos Mavrogiannopoulos2014-11-122-2/+2
* added gnutls_pkcs12_bag_set_privkey()Nikos Mavrogiannopoulos2014-11-111-0/+50
* silence warningNikos Mavrogiannopoulos2014-11-111-1/+1
* Fix double-free in gnutls_pkcs12_simple_parse()Chen Hongzhi2014-11-051-2/+0
* when calling gnutls_x509_crt_get_subject_key_id set the id_sizeNikos Mavrogiannopoulos2014-11-011-0/+1
* corrected bug in gnutls_x509_trust_list_get_issuer() when used without the GN...Nikos Mavrogiannopoulos2014-10-231-0/+1
* avoid d from getting out of scopeNikos Mavrogiannopoulos2014-10-171-1/+3
* avoid memory leak on gnutls_x509_privkey_generate() failureNikos Mavrogiannopoulos2014-10-171-2/+2
* do not allow importing X.509 certificates with version < 3 and extensions pre...Nikos Mavrogiannopoulos2014-10-131-0/+15
* removed flag GNUTLS_VERIFY_KEY_PURPOSE_ON_INTERMEDIATENikos Mavrogiannopoulos2014-10-091-1/+1
* _gnutls_check_valid_key_id: corrected activation/expiration checkNikos Mavrogiannopoulos2014-10-091-1/+1
* pkcs11: simplified and optimized loopNikos Mavrogiannopoulos2014-10-092-14/+2
* when both a trust module and additional CAs are present account the latter as...Nikos Mavrogiannopoulos2014-10-091-42/+50
* simplify the handling of trust_list_get_issuer() when GNUTLS_TL_GET_COPY is n...Nikos Mavrogiannopoulos2014-10-092-21/+58
* pkcs11: always check for a valid subjectKeyIdentifier matchNikos Mavrogiannopoulos2014-10-072-4/+11
* Also iterate over the CA certificates in a PKCS11 tokenArmin Burgmeier2014-10-071-17/+113
* Return an error if multiple PKCS11 URLs are added to a trust listArmin Burgmeier2014-10-071-0/+2
* pkcs11: when no CKA_ID can be relied on fallback on checking the SubjectKeyId...Nikos Mavrogiannopoulos2014-10-072-0/+36
* corrected remove_pkcs11_url()Nikos Mavrogiannopoulos2014-10-061-46/+4
View Lorry Controller Status