generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
14,955 Commits 16 Branches 258 Tags
Commit Graph

13 Commits

Author SHA1 Message Date
Viktor Dukhovni
0e76014e58 Drop cached certificate signature validity flag 
It seems risky in the context of cross-signed certificates when the
same certificate might have multiple potential issuers.  Also rarely
used, since chains in OpenSSL typically only employ self-signed
trust-anchors, whose self-signatures are not checked, while untrusted
certificates are generally ephemeral.

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
 2016-01-18 13:20:48 -05:00
Dr. Stephen Henson
34a42e1489 embed CRL serial number and signature fields 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 15:36:58 +01:00
Dr. Stephen Henson
81e4943843 embed certificate serial number and signature fields 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-10-15 15:36:58 +01:00
Dr. Stephen Henson
2c81e476fa Make X509 opaque 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-22 21:15:55 +01:00
Dr. Stephen Henson
40ffdc9cfa Add comments to x509_int.h 
Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Emilia Käsper <emilia@openssl.org>
 2015-09-22 12:28:45 +01:00
Dr. Stephen Henson
6e63c142f2 Embed various signature algorithms. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-17 17:18:59 +01:00
Dr. Stephen Henson
95ed0e7c1f Embed X509_REQ_INFO 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-16 22:33:25 +01:00
Dr. Stephen Henson
7aef39a72a X509_CRL_INFO embed 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-09-16 22:17:39 +01:00
Dr. Stephen Henson
44748efc85 make X509_REVOKED opaque 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-09-05 12:29:51 +01:00
Dr. Stephen Henson
e3e571925c make X509_CRL opaque 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-09-02 21:26:17 +01:00
Dr. Stephen Henson
124055a96e make X509_REQ opaque 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-08-31 20:58:33 +01:00
Dr. Stephen Henson
bc3686dfb0 make X509_CERT_AUX opaque 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-08-31 20:58:33 +01:00
Dr. Stephen Henson
2743e38c2f make X509_NAME opaque 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-03-25 14:15:00 +00:00