/openbsd/lib/libcrypto/ocsp/ |
H A D | ocsp_vfy.c | 114 } else if (bs->certs && certs) { in OCSP_basic_verify() 115 untrusted = sk_X509_dup(bs->certs); in OCSP_basic_verify() 118 sk_X509_value(certs, i))) { in OCSP_basic_verify() 123 } else if (certs != NULL) { in OCSP_basic_verify() 124 untrusted = certs; in OCSP_basic_verify() 126 untrusted = bs->certs; in OCSP_basic_verify() 182 if (bs->certs && certs) in OCSP_basic_verify() 236 for (i = 0; i < sk_X509_num(certs); i++) { in ocsp_find_signer_sk() 237 x = sk_X509_value(certs, i); in ocsp_find_signer_sk() 428 req->optionalSignature->certs); in OCSP_request_verify() [all …]
|
H A D | ocsp_srv.c | 220 if (!resp->certs && !(resp->certs = sk_X509_new_null())) in OCSP_basic_add1_cert() 223 if (!sk_X509_push(resp->certs, cert)) in OCSP_basic_add1_cert() 232 const EVP_MD *dgst, STACK_OF(X509) *certs, unsigned long flags) in OCSP_basic_sign() 245 for (i = 0; i < sk_X509_num(certs); i++) { in OCSP_basic_sign() 246 X509 *tmpcert = sk_X509_value(certs, i); in OCSP_basic_sign()
|
H A D | ocsp_cl.c | 140 if (!sig->certs && !(sig->certs = sk_X509_new_null())) in OCSP_request_add1_cert() 143 if (!sk_X509_push(sig->certs, cert)) in OCSP_request_add1_cert() 157 const EVP_MD *dgst, STACK_OF(X509) *certs, unsigned long flags) in OCSP_request_sign() 180 for (i = 0; i < sk_X509_num(certs); i++) { in OCSP_request_sign() 181 x = sk_X509_value(certs, i); in OCSP_request_sign() 258 return bs->certs; in STACK_OF()
|
/openbsd/regress/lib/libcrypto/pkcs7/ |
H A D | pkcs7test.c | 130 STACK_OF(X509) *certs; in main() 150 certs = sk_X509_new_null(); in main() 151 if (certs == NULL) in main() 161 sk_X509_push(certs, cert); in main() 189 p7 = PKCS7_encrypt(certs, bio_content, cipher, 0); in main() 223 p7 = PKCS7_sign(cert, pkey, certs, bio_content, 0); in main() 238 if (PKCS7_verify(p7, certs, store, NULL, bio_out, 0) != 1) in main() 281 if (PKCS7_verify(p7, certs, store, bio_content, bio_out, flags) != 1) in main() 298 sk_X509_free(certs); in main()
|
/openbsd/regress/lib/libcrypto/cms/ |
H A D | cmstest.c | 148 STACK_OF(X509) *certs = NULL; in test_cms_encrypt_decrypt() 162 if ((certs = sk_X509_new_null()) == NULL) in test_cms_encrypt_decrypt() 168 if (!sk_X509_push(certs, cert)) in test_cms_encrypt_decrypt() 181 if ((ci = CMS_encrypt(certs, bio_mem, EVP_aes_256_cbc(), 0)) == NULL) { in test_cms_encrypt_decrypt() 234 sk_X509_free(certs); in test_cms_encrypt_decrypt() 244 STACK_OF(X509) *certs = NULL; in test_cms_sign_verify() 260 if ((certs = sk_X509_new_null()) == NULL) in test_cms_sign_verify() 266 if (!sk_X509_push(certs, cert)) in test_cms_sign_verify() 306 if (!CMS_verify(ci, certs, store, NULL, bio_mem, 0)) { in test_cms_sign_verify() 342 sk_X509_free(certs); in test_cms_sign_verify()
|
/openbsd/regress/lib/libssl/tlsfuzzer/ |
H A D | Makefile | 15 certs: localhost.key localhost.crt target 24 regress-tlsfuzzer: certs 27 failing: certs 31 port: certs 43 .PHONY: all certs failing list list-failing missing port
|
/openbsd/regress/lib/libcrypto/x509/ |
H A D | Makefile | 28 perl ${.CURDIR}/make-dir-roots.pl ${.CURDIR}/../certs . 29 ./verify ${.CURDIR}/../certs 36 ./callback ${.CURDIR}/../certs 40 ./expirecallback ${.CURDIR}/../certs 43 ./callbackfailures ${.CURDIR}/../certs
|
H A D | make-dir-roots.pl | 20 $certs = 0; 30 $cert_path = "$certs_dir/ca-$certs.pem"; 33 $certs++;
|
/openbsd/lib/libcrypto/ts/ |
H A D | ts_rsp_sign.c | 88 STACK_OF(X509) *certs); 183 sk_X509_pop_free(ctx->certs, X509_free); in TS_RESP_CTX_free() 239 if (ctx->certs) { in TS_RESP_CTX_set_certs() 240 sk_X509_pop_free(ctx->certs, X509_free); in TS_RESP_CTX_set_certs() 241 ctx->certs = NULL; in TS_RESP_CTX_set_certs() 243 if (!certs) in TS_RESP_CTX_set_certs() 245 if (!(ctx->certs = sk_X509_dup(certs))) { in TS_RESP_CTX_set_certs() 250 X509 *cert = sk_X509_value(ctx->certs, i); in TS_RESP_CTX_set_certs() 767 if (ctx->certs) { in TS_RESP_sign() 792 certs = ctx->flags & TS_ESS_CERT_ID_CHAIN ? ctx->certs : NULL; in TS_RESP_sign() [all …]
|
H A D | ts_verify_ctx.c | 97 sk_X509_pop_free(ctx->certs, X509_free); in TS_VERIFY_CTX_cleanup() 163 TS_VERIFY_CTX_set_certs(TS_VERIFY_CTX *ctx, STACK_OF(X509) *certs) in STACK_OF() 165 ctx->certs = certs; in STACK_OF() 167 return ctx->certs; in STACK_OF()
|
H A D | ts_conf.c | 114 BIO *certs = NULL; in STACK_OF() local 119 if (!(certs = BIO_new_file(file, "r"))) in STACK_OF() 124 allcerts = PEM_X509_INFO_read_bio(certs, NULL, NULL, NULL); in STACK_OF() 141 BIO_free(certs); in STACK_OF() 237 TS_CONF_set_certs(CONF *conf, const char *section, const char *certs, in TS_CONF_set_certs() argument 243 if (!certs) in TS_CONF_set_certs() 244 certs = NCONF_get_string(conf, section, ENV_CERTS); in TS_CONF_set_certs() 246 if (!certs) in TS_CONF_set_certs() 248 if (!(certs_obj = TS_CONF_load_certs(certs))) in TS_CONF_set_certs()
|
/openbsd/lib/libcrypto/x509/ |
H A D | x509_verify.c | 111 sk_X509_pop_free(chain->certs, X509_free); in x509_verify_chain_clear() 112 chain->certs = NULL; in x509_verify_chain_clear() 135 if ((new_chain->certs = X509_chain_up_ref(chain->certs)) == NULL) in x509_verify_chain_dup() 165 if (!sk_X509_push(chain->certs, cert)) { in x509_verify_chain_append() 171 idx = sk_X509_num(chain->certs) - 1; in x509_verify_chain_append() 190 if (chain->certs == NULL) in x509_verify_chain_last() 194 return sk_X509_value(chain->certs, last); in x509_verify_chain_last() 200 if (chain->certs == NULL) in x509_verify_chain_leaf() 202 return sk_X509_value(chain->certs, 0); in x509_verify_chain_leaf() 474 depth = sk_X509_num(chain->certs); in x509_verify_ctx_add_chain() [all …]
|
/openbsd/lib/libcrypto/pkcs7/ |
H A D | pk7_smime.c | 72 PKCS7_sign(X509 *signcert, EVP_PKEY *pkey, STACK_OF(X509) *certs, BIO *data, in PKCS7_sign() argument 95 for (i = 0; i < sk_X509_num(certs); i++) { in PKCS7_sign() 96 if (!PKCS7_add_certificate(p7, sk_X509_value(certs, i))) in PKCS7_sign() 251 PKCS7_verify(PKCS7 *p7, STACK_OF(X509) *certs, X509_STORE *store, BIO *indata, in PKCS7_verify() argument 298 signers = PKCS7_get0_signers(p7, certs, flags); in PKCS7_verify() 420 PKCS7_get0_signers(PKCS7 *p7, STACK_OF(X509) *certs, int flags) in STACK_OF() 456 if (certs) in STACK_OF() 457 signer = X509_find_by_issuer_and_serial (certs, in STACK_OF() 481 PKCS7_encrypt(STACK_OF(X509) *certs, BIO *in, const EVP_CIPHER *cipher, in PKCS7_encrypt() argument 501 for (i = 0; i < sk_X509_num(certs); i++) { in PKCS7_encrypt() [all …]
|
/openbsd/usr.bin/openssl/ |
H A D | pkcs7.c | 213 STACK_OF(X509) * certs = NULL; in pkcs7_main() 220 certs = p7->d.sign->cert; in pkcs7_main() 226 certs = p7->d.signed_and_enveloped->cert; in pkcs7_main() 234 if (certs != NULL) { in pkcs7_main() 237 for (i = 0; i < sk_X509_num(certs); i++) { in pkcs7_main() 238 x = sk_X509_value(certs, i); in pkcs7_main()
|
H A D | certhash.c | 431 certhash_merge(struct hashinfo **links, struct hashinfo **certs, in certhash_merge() argument 437 if (hashinfo_chain_sort(certs) == -1) in certhash_merge() 441 certhash_index(*certs, "certificate"); in certhash_merge() 445 for (cert = *certs; cert != NULL; cert = cert->next) { in certhash_merge() 457 for (cert = *certs; cert != NULL; cert = cert->next) { in certhash_merge() 511 certhash_file(struct dirent *dep, struct hashinfo **certs, in certhash_file() argument 534 *certs = hashinfo_chain(*certs, hi); in certhash_file() 562 struct hashinfo *links = NULL, *certs = NULL, *crls = NULL, *link; in certhash_directory() local 582 if (certhash_file(dep, &certs, &crls) == -1) in certhash_directory() 587 if (certhash_merge(&links, &certs, &crls) == -1) { in certhash_directory() [all …]
|
/openbsd/regress/lib/libssl/quic/ |
H A D | Makefile | 15 ${.CURDIR}/../../libssl/certs/server1-rsa.pem \ 16 ${.CURDIR}/../../libssl/certs/server1-rsa-chain.pem \ 17 ${.CURDIR}/../../libssl/certs/ca-root-rsa.pem
|
/openbsd/regress/lib/libssl/server/ |
H A D | Makefile | 14 ${.CURDIR}/../../libssl/certs/server1-rsa.pem \ 15 ${.CURDIR}/../../libssl/certs/server1-rsa-chain.pem \ 16 ${.CURDIR}/../../libssl/certs/ca-root-rsa.pem
|
/openbsd/regress/lib/libssl/shutdown/ |
H A D | Makefile | 14 ${.CURDIR}/../../libssl/certs/server1-rsa.pem \ 15 ${.CURDIR}/../../libssl/certs/server1-rsa-chain.pem \ 16 ${.CURDIR}/../../libssl/certs/ca-root-rsa.pem
|
/openbsd/regress/lib/libssl/tls/ |
H A D | Makefile | 14 ${.CURDIR}/../../libssl/certs/server1-rsa.pem \ 15 ${.CURDIR}/../../libssl/certs/server1-rsa-chain.pem \ 16 ${.CURDIR}/../../libssl/certs/ca-root-rsa.pem
|
/openbsd/regress/lib/libtls/tls/ |
H A D | Makefile | 15 ${.CURDIR}/../../libssl/certs/ca-root-rsa.pem \ 16 ${.CURDIR}/../../libssl/certs/server1-rsa-chain.pem \ 17 ${.CURDIR}/../../libssl/certs/server1-rsa.pem
|
/openbsd/regress/lib/libssl/ssl/ |
H A D | Makefile | 14 ${.CURDIR}/../certs/server1-rsa.pem ${.CURDIR}/../certs/server1-rsa-chain.pem \ 15 ${.CURDIR}/../certs/ca-root-rsa.pem
|
/openbsd/regress/lib/libssl/dtls/ |
H A D | Makefile | 17 ${.CURDIR}/../../libssl/certs/server1-rsa.pem \ 18 ${.CURDIR}/../../libssl/certs/server1-rsa.pem \ 19 ${.CURDIR}/../../libssl/certs/ca-int-rsa.pem
|
/openbsd/regress/lib/libtls/keypair/ |
H A D | Makefile | 16 ${.CURDIR}/../../libssl/certs/ca-root-rsa.pem \ 17 ${.CURDIR}/../../libssl/certs/server1-rsa.pem \ 18 ${.CURDIR}/../../libssl/certs/server1-rsa.pem
|
/openbsd/lib/libcrypto/cms/ |
H A D | cms_smime.c | 307 STACK_OF(X509) *certs, STACK_OF(X509_CRL) *crls) in cms_signerinfo_verify_cert() 318 if (!X509_STORE_CTX_init(ctx, store, signer, certs)) { in cms_signerinfo_verify_cert() 378 scount += CMS_set1_signers_certs(cms, certs, flags); in CMS_verify() 505 STACK_OF(X509) *certs, X509_STORE *store, unsigned int flags) in CMS_verify_receipt() 510 r = CMS_verify(rcms, certs, store, NULL, NULL, flags); in CMS_verify_receipt() 537 for (i = 0; i < sk_X509_num(certs); i++) { in CMS_sign() 538 X509 *x = sk_X509_value(certs, i); in CMS_sign() 564 STACK_OF(X509) *certs, unsigned int flags) in CMS_sign_receipt() 582 cms = CMS_sign(NULL, NULL, certs, NULL, flags); in CMS_sign_receipt() 641 for (i = 0; i < sk_X509_num(certs); i++) { in CMS_encrypt() [all …]
|
/openbsd/regress/lib/libssl/verify/ |
H A D | Makefile | 23 REGRESS_SETUP_ONCE += create-libressl-test-certs 24 create-libressl-test-certs: create-libressl-test-certs.pl
|