generic-library/curl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
b8673bb9f0
curl/lib/vtls
History
Jay Satiro b8673bb9f0 openssl: Fix verification of server-sent legacy intermediates 
- Try building a chain using issuers in the trusted store first to avoid
problems with server-sent legacy intermediates.

Prior to this change server-sent legacy intermediates with missing
legacy issuers would cause verification to fail even if the client's CA
bundle contained a valid replacement for the intermediate and an
alternate chain could be constructed that would verify successfully.

https://rt.openssl.org/Ticket/Display.html?id=3621&user=guest&pass=guest
2015-06-07 23:33:32 -04:00
..
axtls.c axtls: add timeout within Curl_axtls_connect 2015-03-31 02:04:22 +02:00
axtls.h vtls: Removed unimplemented overrides of curlssl_close_all() 2015-01-17 16:41:03 +00:00
cyassl.c cyassl: Implement public key pinning 2015-04-22 17:07:19 -04:00
cyassl.h cyassl: CTX callback cosmetic changes and doc fix 2015-03-28 16:41:51 +01:00
darwinssl.c darwinsssl: add support for TLS False Start 2015-03-21 12:22:56 -05:00
darwinssl.h darwinsssl: add support for TLS False Start 2015-03-21 12:22:56 -05:00
gskit.c vtls: use curl_printf.h all over 2015-03-03 23:17:43 +01:00
gskit.h gskit.h: Code policing of function pointer arguments 2015-01-17 17:02:01 +00:00
gtls.c curl_setup: Add macros for FOPEN_READTEXT, FOPEN_WRITETEXT 2015-06-01 03:21:23 -04:00
gtls.h gtls: implement CURLOPT_CERTINFO 2015-03-20 19:03:53 +01:00
nss.c nss: fix compilation failure with old versions of NSS 2015-04-27 15:37:16 +02:00
nssg.h nss: add support for TLS False Start 2015-03-20 20:14:35 +01:00
openssl.c openssl: Fix verification of server-sent legacy intermediates 2015-06-07 23:33:32 -04:00
openssl.h openssl: use colons properly in the ciphers list 2015-03-12 23:29:46 +01:00
polarssl_threadlock.c vtls: use curl_printf.h all over 2015-03-03 23:17:43 +01:00
polarssl_threadlock.h vtls: moved all TLS/SSL source and header files into subdir 2013-12-20 17:12:42 +01:00
polarssl.c polarssl: called mbedTLS in 1.3.10 and later 2015-03-25 09:19:57 +01:00
polarssl.h vtls: Removed unimplemented overrides of curlssl_close_all() 2015-01-17 16:41:03 +00:00
schannel.c schannel.c: Small changes 2015-05-02 22:21:25 +02:00
schannel.h schannel: Removed curl_ prefix from source files 2015-02-07 21:34:33 +00:00
vtls.c vtls: Don't accept unknown CURLOPT_SSLVERSION values 2015-03-27 09:32:23 +01:00
vtls.h Curl_ssl_md5sum: return CURLcode 2015-03-25 08:32:12 +01:00