Richard Levitte 30b415b076 Make an explicit check during certificate validation to see that the ...

CA setting in each certificate on the chain is correct.  As a side-
effect always do the following basic checks on extensions, not just
when there's an associated purpose to the check:
- if there is an unhandled critical extension (unless the user has
  chosen to ignore this fault)
- if the path length has been exceeded (if one is set at all)
- that certain extensions fit the associated purpose (if one has been
  given)

2004-11-29 11:28:08 +00:00

..

aes

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

asn1

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

bf

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

bio

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

bn

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

buffer

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

cast

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

comp

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

conf

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

des

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

dh

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

dsa

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

dso

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

ec

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

ecdh

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

ecdsa

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

engine

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

err

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

evp

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

hmac

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

idea

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

krb5

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

lhash

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

md2

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

md4

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

md5

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

mdc2

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

objects

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

ocsp

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

pem

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

perlasm

perlasm/x86[ms|nasm] update to accomodate updated RC4 assembler module.

2004-11-27 15:14:58 +00:00

pkcs7

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

pkcs12

Check return code of EVP_CipherInit() in PKCS#12 code.

2004-11-24 01:21:03 +00:00

rand

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

rc2

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

rc4

Engage RC4 IA-64 assembler module.

2004-11-26 15:12:17 +00:00

rc5

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

ripemd

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

rsa

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

sha

Engage RC4 IA-64 assembler module.

2004-11-26 15:12:17 +00:00

stack

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

store

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

threads

Only use environment variables if uid and gid are the same as euid and egid.

2003-12-27 16:07:20 +00:00

txt_db

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

ui

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

x509

Make an explicit check during certificate validation to see that the

2004-11-29 11:28:08 +00:00

x509v3

Make an explicit check during certificate validation to see that the

2004-11-29 11:28:08 +00:00

.cvsignore

Always use buildinf.h, which now includes the mk1mfinf.h data.

1999-07-29 12:57:23 +00:00

amd64cpuid.pl

RC4 tune-up for Intel P4 core, both 32- and 64-bit ones. As it's

2004-11-21 10:36:25 +00:00

cpt_err.c

First step in fixing "ex_data" support. Warning: big commit log ...

2001-09-01 19:56:46 +00:00

cryptlib.c

linux-x86_64 didn't link after EM64T RC4 tune-up...

2004-11-23 09:06:12 +00:00

cryptlib.h

OPENSSL_ia32cap final touches. Note that OPENSSL_ia32cap is no longer a

2004-08-29 16:36:05 +00:00

crypto-lib.com

Synchronise with Unix build.

2004-09-12 13:02:04 +00:00

crypto.h

OPENSSL_ia32cap final touches. Note that OPENSSL_ia32cap is no longer a

2004-08-29 16:36:05 +00:00

cversion.c

(oops) Apologies all, that last header-cleanup commit was from the wrong

2004-04-19 18:09:28 +00:00

ebcdic.c

Oops, this file already had the "empty source file" workaround but it

2003-10-29 22:25:04 +00:00

ebcdic.h

EBCDIC support.

2000-02-01 02:21:16 +00:00

ex_data.c

(oops) Apologies all, that last header-cleanup commit was from the wrong

2004-04-19 18:09:28 +00:00

ia64cpuid.S

Add framework for yet another assembler module dubbed "cpuid." Idea

2004-07-26 20:18:55 +00:00

install.com

Add store.h among the exported headers on VMS.

2004-03-24 09:52:16 +00:00

LPdir_nyi.c

Copy a few files from LPlib (a new project of mine), add a wrapper.

2004-07-10 13:16:02 +00:00

LPdir_unix.c

Import changed files from LPlib. The changes are logged as follows

2004-09-23 22:11:39 +00:00

LPdir_vms.c

Import changed files from LPlib. The changes are logged as follows

2004-09-23 22:11:39 +00:00

LPdir_win32.c

Import changed files from LPlib. The changes are logged as follows

2004-09-23 22:11:39 +00:00

LPdir_win.c

Import changed files from LPlib. The changes are logged as follows

2004-09-23 22:11:39 +00:00

LPdir_wince.c

Import changed files from LPlib. The changes are logged as follows

2004-09-23 22:11:39 +00:00

Makefile.ssl

Don't use $(EXHEADER) directly in for loops, as most shells will break

2004-11-02 23:55:01 +00:00

md32_common.h

Minor 64-bit md32_common.h update and minor unsignification of digests.

2004-07-25 19:10:43 +00:00

mem_clr.c

Make CRYPTO_cleanse() independent of endianness.

2002-12-03 16:06:40 +00:00

mem_dbg.c

Use BUF_strlcpy() instead of strcpy().

2003-12-27 14:40:17 +00:00

mem.c

CRYPTO_malloc(), CRYPTO_realloc() and variants of them should return NULL

2003-12-01 12:06:15 +00:00

o_dir_test.c

Copy a few files from LPlib (a new project of mine), add a wrapper.

2004-07-10 13:16:02 +00:00

o_dir.c

DJGPP has opendir() and friends, according to Gisle Vanem <giva@bgnett.no>.

2004-08-03 19:15:21 +00:00

o_dir.h

Copy a few files from LPlib (a new project of mine), add a wrapper.

2004-07-10 13:16:02 +00:00

o_str.c

o_str.c: Windows doesn't have <strings.h>, and since we use _strnicmp() and

2004-07-08 08:32:48 +00:00

o_str.h

o_str.c: Windows doesn't have <strings.h>, and since we use _strnicmp() and

2004-07-08 08:32:48 +00:00

o_time.c

Since version 7.0, The C RTL in VMS handles time in terms of UTC

2004-07-19 07:50:43 +00:00

o_time.h

Use one address consistently.

2001-07-05 10:20:07 +00:00

opensslconf.h.in

This fixes the installation target for dynamic engines, which was trying to

2004-06-01 03:18:58 +00:00

opensslv.h

Make reservations for FIPS code in HEAD branch, so that the moment FIPS

2004-05-17 15:49:13 +00:00

ossl_typ.h

Reduce dependencies on crypto.h by moving the opaque definition of

2004-05-17 18:39:00 +00:00

symhacks.h

Another symbol longer than 31 characters...

2004-09-08 08:13:03 +00:00

tmdiff.c

Netware-specific changes,

2003-11-28 13:10:58 +00:00

tmdiff.h

For whatever reason (compiler or header bugs), at least one commonly-used

2003-10-29 04:40:13 +00:00

uid.c

Netware-specific changes,

2003-11-28 13:10:58 +00:00

x86cpuid.pl

x86 assembler updates: more instructions, new OPENSSL_instrument_halt

2004-09-09 14:50:32 +00:00