artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1fee06b) | patch
Add support to verify X509 chain from CERT payloads.
authortobhe <tobhe@openbsd.org>
Wed, 28 Jun 2023 14:10:24 +0000 (14:10 +0000)
committertobhe <tobhe@openbsd.org>
Wed, 28 Jun 2023 14:10:24 +0000 (14:10 +0000)
commita30a01d6baebec8e8d53611d304541518caaf92a
treefc43b3f843f73ce11816fee9dab56922178c585ftree | snapshot
parent1fee06b04ef0d983e86b8eef050f0ca7489fc530commit | diff
Add support to verify X509 chain from CERT payloads.
Encode cert and intermediate CAs in new cert bundle object,
so the information can be passed to the ca process in one step.
Pass untrusted intermediates to X509_verify_cert().

From markus@
sbin/iked/ca.c diff | blob | history
sbin/iked/iked.h diff | blob | history
sbin/iked/ikev2.c diff | blob | history
sbin/iked/ikev2.h diff | blob | history
sbin/iked/ikev2_msg.c diff | blob | history
sbin/iked/ikev2_pld.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim