mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-01-30 14:01:55 +08:00
Code Issues Packages Projects Releases Wiki Activity
ffbd6e6787
openssl/crypto/x509
History
Lutz Jaenicke 178696d602 X509: Add "code sign" as purpose for verification of certificates 
Code signing certificates have other properties as for example described in
CA Browser Forum documents. This leads to "unsupported certificate purpose" errors when
verifying signed objects.
This patch adds the purpose "codesign" to the table in X.509 certificate verification and
the verification parameter "code_sign" to X509_VERIFY_PARAM.

Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/18567)
2022-08-18 10:24:53 +02:00
..
build.info
by_dir.c Update copyright year 2022-05-03 13:34:51 +01:00
by_file.c
by_store.c crypto/x509/by_store.c: Add check for OPENSSL_strdup 2022-06-22 16:55:19 +10:00
ext_dat.h
pcy_cache.c
pcy_data.c
pcy_lib.c
pcy_local.h
pcy_map.c
pcy_node.c
pcy_tree.c
standard_exts.h
t_crl.c
t_req.c
t_x509.c Update copyright year 2022-05-03 13:34:51 +01:00
v3_addr.c Fix a crash in v2i_IPAddrBlocks() 2022-07-22 08:41:38 +01:00
v3_admis.c
v3_admis.h
v3_akeya.c
v3_akid.c Update copyright year 2022-05-03 13:34:51 +01:00
v3_asid.c Fix a crash in X509v3_asid_subset() 2022-06-15 10:21:29 -04:00
v3_bcons.c
v3_bitst.c
v3_conf.c
v3_cpols.c
v3_crld.c Update copyright year 2022-05-03 13:34:51 +01:00
v3_enum.c
v3_extku.c
v3_genn.c
v3_ia5.c
v3_info.c
v3_int.c
v3_ist.c Update copyright year 2022-05-03 13:34:51 +01:00
v3_lib.c Fix memory leak in X509V3_add1_i2d when flag is X509V3_ADD_DELETE 2022-07-11 10:50:56 +02:00
v3_ncons.c
v3_pci.c
v3_pcia.c
v3_pcons.c
v3_pku.c
v3_pmaps.c
v3_prn.c
v3_purp.c X509: Add "code sign" as purpose for verification of certificates 2022-08-18 10:24:53 +02:00
v3_san.c X509V3_set_ctx(): Clarify subject/req parameter for constructing SAN email addresses from subject DN 2021-12-07 15:14:49 +01:00
v3_skid.c X509V3_set_ctx(): Clarify use of subject/req parameter for constructing SKID by hash of pubkey 2021-12-07 15:13:26 +01:00
v3_sxnet.c v3_sxnet: add a check for the return of i2s_ASN1_INTEGER() 2022-07-05 08:08:12 +02:00
v3_tlsf.c Update copyright year 2022-05-03 13:34:51 +01:00
v3_utf8.c Update copyright year 2022-05-03 13:34:51 +01:00
v3_utl.c Update copyright year 2022-05-03 13:34:51 +01:00
v3err.c Update copyright year 2022-05-03 13:34:51 +01:00
x509_att.c
x509_cmp.c Fix a memory leak in X509_issuer_and_serial_hash 2022-05-24 11:52:46 +02:00
x509_d2.c Fix the checks of X509_LOOKUP_* functions 2022-06-23 12:42:25 +02:00
x509_def.c
x509_err.c
x509_ext.c
x509_local.h
x509_lu.c x509_lu.c and x509_vfy.c: improve coding style, comments, and related doc 2022-07-26 16:35:01 +02:00
x509_meth.c
x509_obj.c
x509_r2x.c
x509_req.c
x509_set.c
x509_trust.c X509{,_LOOKUP}: Improve distinction between not found and fatal/internal error 2022-05-04 16:25:44 +02:00
x509_txt.c
x509_v3.c
x509_vfy.c x509_lu.c and x509_vfy.c: improve coding style, comments, and related doc 2022-07-26 16:35:01 +02:00
x509_vpm.c X509: Add "code sign" as purpose for verification of certificates 2022-08-18 10:24:53 +02:00
x509cset.c
x509name.c
x509rset.c
x509spki.c
x509type.c
x_all.c
x_attrib.c
x_crl.c Fix style nits in crl_set_issuers 2022-05-25 14:06:34 +02:00
x_exten.c
x_name.c
x_pubkey.c libcrypto refactoring: introduce and use ossl_asn1_string_set_bits_left() 2022-07-19 08:44:19 +02:00
x_req.c
x_x509.c
x_x509a.c