Vilmos Nebehaj
|
cd2cedf002
|
Add support for --cacert in DarwinSSL.
Security Framework on OS X makes it possible to supply extra anchor (CA)
certificates via the Certificate, Key, and Trust Services API. This
commit makes the '--cacert' option work using this API.
More information:
https://developer.apple.com/library/mac/documentation/security/Reference/certifkeytrustservices/Reference/reference.html
The HTTPS tests now pass on OS X except 314, which requires the '--crl'
option to work.
|
2014-05-21 18:48:14 -05:00 |
|
Steve Holme
|
678239df54
|
darwinssl: Updated copyright following recent changes
|
2014-05-15 18:38:42 +01:00 |
|
Nick Zitzmann
|
69cdc95932
|
darwinssl: fix potential crash when attempting to copy an identity
from a P12 file
This could've happened if SecPKCS12Import() returned noErr _and_ no
identity.
|
2014-05-14 17:48:14 -05:00 |
|
David Ryskalczyk
|
afc6e5004f
|
Don't omit CN verification in DarwinSSL when an IP address is used.
|
2014-02-23 12:37:27 -05:00 |
|
Nick Zitzmann
|
21aa79f463
|
darwinssl: un-break Leopard build after PKCS#12 change
It turns out errSecDecode wasn't defined in Leopard's headers. So
we use the enum's value instead.
Bug: http://curl.haxx.se/mail/lib-2013-12/0150.html
Reported by: Abram Pousada
|
2014-01-09 17:53:29 -06:00 |
|
Steve Holme
|
f88f9bed00
|
vtls: Updated comments referencing sslgen.c and ssluse.c
|
2013-12-26 21:42:22 +00:00 |
|
Steve Holme
|
9aa6e4357a
|
vtls: Fixed up include of vtls.h
|
2013-12-26 21:25:51 +00:00 |
|
Daniel Stenberg
|
a47c142a88
|
vtls: moved all TLS/SSL source and header files into subdir
|
2013-12-20 17:12:42 +01:00 |
|