| /openssl/test/ |
| H A D | x509_time_test.c | 300 static int test_X509_cmp_timeframe_vpm(const X509_VERIFY_PARAM *vpm, in test_X509_cmp_timeframe_vpm() argument
305 int always_0 = vpm != NULL in test_X509_cmp_timeframe_vpm()
311 && TEST_int_eq(X509_cmp_timeframe(vpm, asn1_before, NULL), 0) in test_X509_cmp_timeframe_vpm()
312 && TEST_int_eq(X509_cmp_timeframe(vpm, NULL, asn1_after), 0) in test_X509_cmp_timeframe_vpm()
313 && TEST_int_eq(X509_cmp_timeframe(vpm, NULL, NULL), 0) in test_X509_cmp_timeframe_vpm()
314 && TEST_int_eq(X509_cmp_timeframe(vpm, asn1_after, asn1_after), in test_X509_cmp_timeframe_vpm()
329 X509_VERIFY_PARAM *vpm = X509_VERIFY_PARAM_new(); in test_X509_cmp_timeframe() local
332 if (vpm == NULL) in test_X509_cmp_timeframe()
337 X509_VERIFY_PARAM_set_time(vpm, now); in test_X509_cmp_timeframe()
340 && X509_VERIFY_PARAM_set_flags(vpm, X509_V_FLAG_NO_CHECK_TIME) in test_X509_cmp_timeframe()
[all …]
|
| H A D | cmp_vfy_test.c | 237 X509_VERIFY_PARAM *vpm = X509_STORE_get0_param(ts); in test_validate_msg_signature_partial_chain() local
239 X509_VERIFY_PARAM_set_flags(vpm, X509_V_FLAG_PARTIAL_CHAIN); in test_validate_msg_signature_partial_chain()
241 X509_VERIFY_PARAM_set_time(vpm, test_time_after_expiration); in test_validate_msg_signature_partial_chain()
406 X509_VERIFY_PARAM *vpm = X509_STORE_get0_param(ts); in setup_path() local
408 X509_VERIFY_PARAM_set_time(vpm, test_time_after_expiration); in setup_path()
|
| /openssl/apps/lib/ |
| H A D | opt.c | 707 int opt_verify(int opt, X509_VERIFY_PARAM *vpm) in opt_verify() argument
715 OPENSSL_assert(vpm != NULL); in opt_verify()
729 if (!X509_VERIFY_PARAM_add0_policy(vpm, otmp)) { in opt_verify()
750 if (!X509_VERIFY_PARAM_set_purpose(vpm, i)) { in opt_verify()
763 X509_VERIFY_PARAM_set1(vpm, vtmp); in opt_verify()
768 X509_VERIFY_PARAM_set_depth(vpm, i); in opt_verify()
773 X509_VERIFY_PARAM_set_auth_level(vpm, i); in opt_verify()
783 X509_VERIFY_PARAM_set_time(vpm, (time_t)t); in opt_verify()
786 if (!X509_VERIFY_PARAM_set1_host(vpm, opt_arg(), 0)) in opt_verify()
794 if (!X509_VERIFY_PARAM_set1_ip_asc(vpm, opt_arg())) in opt_verify()
[all …]
|
| H A D | apps.c | 718 X509_VERIFY_PARAM *vpm) in warn_cert() argument
721 int res = X509_cmp_timeframe(vpm, X509_get0_notBefore(cert), in warn_cert()
731 X509_VERIFY_PARAM *vpm) in warn_certs() argument
736 warn_cert(uri, sk_X509_value(certs, i), warn_EE, vpm); in warn_certs()
742 X509_VERIFY_PARAM *vpm) in load_cert_certs() argument
761 warn_cert(uri, *pcert, 0, vpm); in load_cert_certs()
763 warn_certs(uri, *pcerts, 1, vpm); in load_cert_certs()
829 X509_VERIFY_PARAM *vpm) in load_certstore() argument
2593 X509_VERIFY_PARAM *vpm = X509_STORE_get0_param(ts); in app_http_tls_cb() local
2594 const char *host = vpm == NULL ? NULL : in app_http_tls_cb()
[all …]
|
| /openssl/doc/man3/ |
| H A D | SSL_CTX_get0_param.pod | 15 int SSL_CTX_set1_param(SSL_CTX *ctx, X509_VERIFY_PARAM *vpm);
16 int SSL_set1_param(SSL *ssl, X509_VERIFY_PARAM *vpm);
31 to B<vpm> for B<ctx> or B<ssl>.
60 X509_VERIFY_PARAM *vpm = SSL_get0_param(ssl);
61 X509_VERIFY_PARAM_set1_host(vpm, "www.foo.com", 0);
|
| H A D | X509_cmp_time.pod | 13 int X509_cmp_timeframe(const X509_VERIFY_PARAM *vpm,
29 included in the verification parameters I<vpm> if they are not NULL and contain
64 X509_cmp_timeframe() returns 0 if I<vpm> is not NULL and the verification
|
| /openssl/apps/ |
| H A D | ts.c | 74 X509_VERIFY_PARAM *vpm);
175 X509_VERIFY_PARAM *vpm = NULL; in ts_main() local
181 if ((vpm = X509_VERIFY_PARAM_new()) == NULL) in ts_main()
286 if (!opt_verify(o, vpm)) in ts_main()
343 vpmtouched ? vpm : NULL); in ts_main()
349 X509_VERIFY_PARAM_free(vpm); in ts_main()
856 X509_VERIFY_PARAM *vpm) in verify_command() argument
876 vpm)) == NULL) in verify_command()
959 vpm); in create_verify_ctx()
1026 if (vpm != NULL) in create_cert_store()
[all …]
|
| H A D | verify.c | 86 X509_VERIFY_PARAM *vpm = NULL; in verify_main() local
92 if ((vpm = X509_VERIFY_PARAM_new()) == NULL) in verify_main()
124 if (!opt_verify(o, vpm)) in verify_main()
215 X509_STORE_set1_param(store, vpm); in verify_main()
235 X509_VERIFY_PARAM_free(vpm); in verify_main()
|
| H A D | smime.c | 171 X509_VERIFY_PARAM *vpm = NULL; in smime_main() local
189 if ((vpm = X509_VERIFY_PARAM_new()) == NULL) in smime_main()
387 if (!opt_verify(o, vpm)) in smime_main()
568 X509_STORE_set1_param(store, vpm); in smime_main()
687 X509_VERIFY_PARAM_free(vpm); in smime_main()
|
| H A D | cmp.c | 224 static X509_VERIFY_PARAM *vpm = NULL; variable
997 X509_STORE *ts = load_certstore(input, opt_otherpass, desc, vpm); in load_trusted()
1004 if (X509_STORE_set1_param(ts, vpm /* may be NULL */) in load_trusted()
1373 vpm)) in setup_ssl_ctx()
1430 vpm); in setup_ssl_ctx()
1557 vpm)) in setup_protection_ctx()
2693 : !opt_verify(opt_next(), vpm)) { in read_config()
2904 if (!opt_verify(o, vpm)) in get_opts()
3550 vpm = X509_VERIFY_PARAM_new(); in cmp_main()
3551 if (vpm == NULL) { in cmp_main()
[all …]
|
| H A D | ocsp.c | 231 X509_VERIFY_PARAM *vpm = NULL; in ocsp_main() local
257 || (vpm = X509_VERIFY_PARAM_new()) == NULL) in ocsp_main()
405 if (!opt_verify(o, vpm)) in ocsp_main()
805 X509_STORE_set1_param(store, vpm); in ocsp_main()
853 X509_VERIFY_PARAM_free(vpm); in ocsp_main()
|
| H A D | cms.c | 295 X509_VERIFY_PARAM *vpm = X509_VERIFY_PARAM_new(); in cms_main() local
321 if (encerts == NULL || vpm == NULL) in cms_main()
677 if (!opt_verify(o, vpm)) in cms_main()
964 X509_STORE_set1_param(store, vpm); in cms_main()
1272 X509_VERIFY_PARAM_free(vpm); in cms_main()
|
| H A D | s_server.c | 1023 X509_VERIFY_PARAM *vpm = NULL; in s_server_main() local
1117 vpm = X509_VERIFY_PARAM_new(); in s_server_main()
1118 if (port == NULL || cctx == NULL || vpm == NULL) in s_server_main()
1343 if (!opt_verify(o, vpm)) in s_server_main()
2031 if (vpmtouched && !SSL_CTX_set1_param(ctx, vpm)) { in s_server_main()
2094 if (vpmtouched && !SSL_CTX_set1_param(ctx2, vpm)) { in s_server_main()
2357 X509_VERIFY_PARAM_free(vpm); in s_server_main()
|
| H A D | s_client.c | 852 X509_VERIFY_PARAM *vpm = NULL; in s_client_main() local
978 vpm = X509_VERIFY_PARAM_new(); in s_client_main()
981 if (port == NULL || vpm == NULL || cctx == NULL) { in s_client_main()
1132 if (!opt_verify(o, vpm)) in s_client_main()
1851 if (vpmtouched && !SSL_CTX_set1_param(ctx, vpm)) { in s_client_main()
3346 X509_VERIFY_PARAM_free(vpm); in s_client_main()
|
| /openssl/crypto/x509/ |
| H A D | x509_vpm.c | 36 static int int_x509_param_set_hosts(X509_VERIFY_PARAM *vpm, int mode, in int_x509_param_set_hosts() argument
54 sk_OPENSSL_STRING_pop_free(vpm->hosts, str_free); in int_x509_param_set_hosts()
55 vpm->hosts = NULL; in int_x509_param_set_hosts()
64 if (vpm->hosts == NULL && in int_x509_param_set_hosts()
65 (vpm->hosts = sk_OPENSSL_STRING_new_null()) == NULL) { in int_x509_param_set_hosts()
70 if (!sk_OPENSSL_STRING_push(vpm->hosts, copy)) { in int_x509_param_set_hosts()
72 if (sk_OPENSSL_STRING_num(vpm->hosts) == 0) { in int_x509_param_set_hosts()
73 sk_OPENSSL_STRING_free(vpm->hosts); in int_x509_param_set_hosts()
74 vpm->hosts = NULL; in int_x509_param_set_hosts()
|
| H A D | x509_vfy.c | 871 int n = sk_OPENSSL_STRING_num(vpm->hosts); in check_hosts()
874 if (vpm->peername != NULL) { in check_hosts()
875 OPENSSL_free(vpm->peername); in check_hosts()
876 vpm->peername = NULL; in check_hosts()
880 if (X509_check_host(x, name, 0, vpm->hostflags, &vpm->peername) > 0) in check_hosts()
888 X509_VERIFY_PARAM *vpm = ctx->param; in check_id() local
891 if (vpm->hosts != NULL && check_hosts(x, vpm) <= 0) { in check_id()
895 if (vpm->email != NULL in check_id()
896 && X509_check_email(x, vpm->email, vpm->emaillen, 0) <= 0) { in check_id()
900 if (vpm->ip != NULL && X509_check_ip(x, vpm->ip, vpm->iplen, 0) <= 0) { in check_id()
[all …]
|
| H A D | t_x509.c | 457 X509_VERIFY_PARAM *vpm = X509_STORE_get0_param(ts); in X509_STORE_CTX_print_verify_cb() local
464 while ((str = X509_VERIFY_PARAM_get0_host(vpm, idx++)) != NULL) in X509_STORE_CTX_print_verify_cb()
469 str = X509_VERIFY_PARAM_get0_email(vpm); in X509_STORE_CTX_print_verify_cb()
474 str = X509_VERIFY_PARAM_get1_ip_asc(vpm); in X509_STORE_CTX_print_verify_cb()
|
| /openssl/crypto/cmp/ |
| H A D | cmp_genm.c | 36 int type_CA, const X509_VERIFY_PARAM *vpm) in ossl_X509_check() argument
39 int res = X509_cmp_timeframe(vpm, X509_get0_notBefore(cert), in ossl_X509_check()
43 vpm == NULL ? OSSL_CMP_LOG_WARNING : OSSL_CMP_LOG_ERR; in ossl_X509_check()
63 int type_CA, const X509_VERIFY_PARAM *vpm) in ossl_X509_check_all() argument
70 sk_X509_value(certs, i), type_CA, vpm) in ossl_X509_check_all()
258 X509_VERIFY_PARAM *vpm = X509_STORE_get0_param(ts); in verify_ss_cert_trans() local
262 if (!X509_STORE_set1_param(ts, vpm) in verify_ss_cert_trans()
|
| H A D | cmp_vfy.c | 253 X509_VERIFY_PARAM *vpm = ts != NULL ? X509_STORE_get0_param(ts) : NULL; in cert_acceptable() local
274 time_cmp = X509_cmp_timeframe(vpm, X509_get0_notBefore(cert), in cert_acceptable()
|
| /openssl/apps/include/ |
| H A D | apps.h | 145 X509_VERIFY_PARAM *vpm);
147 const char *desc, X509_VERIFY_PARAM *vpm);
149 X509_VERIFY_PARAM *vpm);
|
| H A D | opt.h | 428 int opt_verify(int i, X509_VERIFY_PARAM *vpm);
|
| /openssl/ssl/ |
| H A D | ssl_lib.c | 1342 int SSL_CTX_set1_param(SSL_CTX *ctx, X509_VERIFY_PARAM *vpm) in SSL_CTX_set1_param() argument
1344 return X509_VERIFY_PARAM_set1(ctx->param, vpm); in SSL_CTX_set1_param()
1347 int SSL_set1_param(SSL *ssl, X509_VERIFY_PARAM *vpm) in SSL_set1_param() argument
1354 return X509_VERIFY_PARAM_set1(sc->param, vpm); in SSL_set1_param()
|
| /openssl/include/openssl/ |
| H A D | x509.h.in | 503 int X509_cmp_timeframe(const X509_VERIFY_PARAM *vpm,
|
| H A D | ssl.h.in | 1852 __owur int SSL_CTX_set1_param(SSL_CTX *ctx, X509_VERIFY_PARAM *vpm);
1853 __owur int SSL_set1_param(SSL *ssl, X509_VERIFY_PARAM *vpm);
|
