Home
last modified time | relevance | path

Searched refs:CA (Results 1 – 25 of 200) sorted by relevance

12345678

/NextBSD/crypto/openssl/doc/apps/
HDCA.pl.pod6 CA.pl - friendlier interface for OpenSSL certificate programs
10 B<CA.pl>
27 The B<CA.pl> script is a perl script that supplies the relevant command line
56 creates a new CA hierarchy for use with the B<ca> program (or the B<-signcert>
57 and B<-xsign> options). The user is prompted to enter the filename of the CA
59 details of the CA will be prompted for. The relevant files and directories
64 create a PKCS#12 file containing the user certificate, private key and CA
66 file "newcert.pem" and the CA certificate to be in the file demoCA/cacert.pem,
84 file section B<v3_ca> and so makes the signed request a valid CA certificate. This
85 is useful when creating intermediate CA from a root CA.
[all …]
HDx509.pod50 [B<-CA filename>]
68 various forms, sign certificate requests like a "mini CA" or edit
107 digest, such as the B<-fingerprint>, B<-signkey> and B<-CA> options. If not
246 locally and must be a root CA: any certificate chain ending in this CA
249 Trust settings currently are only used with a root CA. They allow a finer
250 control over the purposes the root CA can be used for. For example a CA
310 can thus behave like a "mini CA".
339 the B<-signkey> or the B<-CA> options). Normally all extensions are
365 the B<-signkey> or B<-CA> options. If used in conjunction with the B<-CA>
372 =item B<-CA filename>
[all …]
HDca.pod6 ca - sample minimal CA application
56 The B<ca> command is a minimal CA application. It can be used
63 =head1 CA OPTIONS
79 signed by the CA.
83 a single self signed certificate to be signed by the CA.
88 and additional field values to be signed by the CA. See the B<SPKAC FORMAT>
110 the CA certificate file.
175 this option defines the CA "policy" to use. This is a section in
177 or match the CA certificate. Check out the B<POLICY FORMAT> section
372 the same as B<-cert>. It gives the file containing the CA
[all …]
HDocsp.pod47 [B<-CA file>]
144 file or pathname containing trusted CA certificates. These are used to verify
163 root CA is not appropriate.
195 do not use certificates in the response as additional untrusted CA
200 do not explicitly trust the root CA if it is set to be trusted for OCSP signing.
245 If the B<index> option is present then the B<CA> and B<rsigner> options must also be
248 =item B<-CA file>
250 CA certificate corresponding to the revocation information in B<indexfile>.
306 Otherwise the issuing CA certificate in the request is compared to the OCSP
309 Otherwise the OCSP responder certificate's CA is checked against the issuing
[all …]
HDverify.pod67 Verify the signature on the self-signed root CA. This is disabled by default
183 Verify the signature on the self-signed root CA. This is disabled by default
215 and ending in the root CA. It is an error if the whole chain cannot be built
218 to be the root CA.
232 is found the remaining lookups are from the trusted certificates. The root CA
241 CA certificates. The precise extensions required are described in more detail in
244 The third operation is to check the trust settings on the root CA. The root
245 CA should be trusted for the supplied purpose. For compatibility with previous
262 server.pem: /C=AU/ST=Queensland/O=CryptSoft Pty Ltd/CN=Test CA (1024 bit)
263 error 24 at 1 depth lookup:invalid CA certificate
[all …]
HDx509v3_config.pod36 basicConstraints=critical,CA:true,pathlen:1
44 CA=true
64 a CA certificate. The first (mandatory) name is B<CA> followed by B<TRUE> or
65 B<FALSE>. If B<CA> is B<TRUE> then an optional B<pathlen> name followed by an
70 basicConstraints=CA:TRUE
72 basicConstraints=CA:FALSE
74 basicConstraints=critical,CA:TRUE, pathlen:0
76 A CA certificate B<must> include the basicConstraints value with the CA field
77 set to TRUE. An end user certificate must either set CA to FALSE or exclude the
79 with CA set to FALSE for end entity certificates.
[all …]
/NextBSD/contrib/llvm/lib/Transforms/Utils/
HDCtorUtils.cpp41 Constant *CA = ConstantArray::get(ATy, CAList); in removeGlobalCtors() local
44 if (CA->getType() == OldCA->getType()) { in removeGlobalCtors()
45 GCL->setInitializer(CA); in removeGlobalCtors()
51 new GlobalVariable(CA->getType(), GCL->isConstant(), GCL->getLinkage(), in removeGlobalCtors()
52 CA, "", GCL->getThreadLocalMode()); in removeGlobalCtors()
71 ConstantArray *CA = cast<ConstantArray>(GV->getInitializer()); in parseGlobalCtors() local
73 Result.reserve(CA->getNumOperands()); in parseGlobalCtors()
74 for (User::op_iterator i = CA->op_begin(), e = CA->op_end(); i != e; ++i) { in parseGlobalCtors()
95 ConstantArray *CA = cast<ConstantArray>(GV->getInitializer()); in findGlobalCtors() local
97 for (User::op_iterator i = CA->op_begin(), e = CA->op_end(); i != e; ++i) { in findGlobalCtors()
/NextBSD/crypto/openssl/doc/ssl/
HDSSL_CTX_load_verify_locations.pod5 SSL_CTX_load_verify_locations - set default locations for trusted CA
18 which CA certificates for verification purposes are located. The certificates
23 If B<CAfile> is not NULL, it points to a file of CA certificates in PEM
24 format. The file can contain several CA certificates identified by
27 ... (CA certificate in base64 encoding) ...
36 If B<CApath> is not NULL, it points to a directory containing CA certificates
37 in PEM format. The files each contain one CA certificate. The files are
38 looked up by the CA subject name hash value, which must hence be available.
39 If more than one CA certificate with the same name hash value exist, the
49 When looking up CA certificates, the OpenSSL library will first search the
[all …]
HDSSL_CTX_use_certificate.pod72 certificate), followed by intermediate CA certificates if applicable, and
73 ending at the highest level (root) CA.
128 to allow the use of complete certificate chains even when no trusted CA
129 storage is used or when the CA issuing the certificate shall not be added to
130 the trusted CA storage.
133 TLS negotiation, CA certificates are additionally looked up in the
134 locations of trusted CA certificates, see
HDSSL_load_client_CA_file.pod24 it is not limited to CA certificates.
28 Load names of CAs from file and use it as a client CA list:
/NextBSD/crypto/openssl/apps/
HDCA.pl51 $CA="$openssl ca $SSLEAY_CONFIG";
116 system ("$CA -create_serial " .
134 system ("$CA -policy policy_anything -infiles newreq.pem");
137 system ("$CA -policy policy_anything -out newcert.pem " .
142 system ("$CA -policy policy_anything -out newcert.pem " .
149 system ("$CA -policy policy_anything -out newcert.pem " .
HDCA.pl.in51 $CA="$openssl ca $SSLEAY_CONFIG";
116 system ("$CA -create_serial " .
134 system ("$CA -policy policy_anything -infiles newreq.pem");
137 system ("$CA -policy policy_anything -out newcert.pem " .
142 system ("$CA -policy policy_anything -out newcert.pem " .
149 system ("$CA -policy policy_anything -out newcert.pem " .
HDCA.sh66 CA="$OPENSSL ca $SSLEAY_CONFIG"
132 $CA -create_serial -out ${CATOP}/$CACERT $CADAYS -batch \
141 $CA -policy policy_anything -infiles newreq.pem
156 $CA -policy policy_anything -out newcert.pem -infiles newreq.pem
162 $CA -policy policy_anything -out newcert.pem -extensions v3_ca -infiles newreq.pem
169 $CA -policy policy_anything -out newcert.pem -infiles tmp.pem
HDopenssl.cnf51 certificate = $dir/cacert.pem # The CA certificate
80 # For type CA, the listed attributes must be the same, and the optional
84 # For the CA policy
169 # requires this to avoid interpreting an end user certificate as a CA.
171 basicConstraints=CA:FALSE
222 basicConstraints = CA:FALSE
228 # Extensions for a typical CA
239 #basicConstraints = critical,CA:true
241 basicConstraints = CA:true
243 # Key usage: this is typical for a CA certificate. However since it will
[all …]
/NextBSD/crypto/openssl/util/
HDmkcerts.sh55 echo creating $CAbits bit CA cert request
65 Test CA (1024 bit)
72 echo problems generating CA request
78 echo signing CA
82 -CA pca-cert.pem -CAkey pca-key.pem \
86 echo problems signing CA cert
119 -CA ca-cert.pem -CAkey ca-key.pem \
156 -CA ca-cert.pem -CAkey ca-key.pem \
193 -CA ca-cert.pem -CAkey ca-key.pem \
/NextBSD/contrib/tzdata/
HDzone.tab108 CA +4734-05243 America/St_Johns Newfoundland Time, including SE Labrador
109 CA +4439-06336 America/Halifax Atlantic Time - Nova Scotia (peninsula), PEI
110 CA +4612-05957 America/Glace_Bay Atlantic Time - Nova Scotia (Cape Breton)
111 CA +4606-06447 America/Moncton Atlantic Time - New Brunswick
112 CA +5320-06025 America/Goose_Bay Atlantic Time - Labrador - most locations
113 CA +5125-05707 America/Blanc-Sablon Atlantic Standard Time - Quebec - Lower North Shore
114 CA +4339-07923 America/Toronto Eastern Time - Ontario & Quebec - most locations
115 CA +4901-08816 America/Nipigon Eastern Time - Ontario & Quebec - places that did not observe DST 19…
116 CA +4823-08915 America/Thunder_Bay Eastern Time - Thunder Bay, Ontario
117 CA +6344-06828 America/Iqaluit Eastern Time - east Nunavut - most locations
[all …]
HDzone1970.tab106 CA +4734-05243 America/St_Johns Newfoundland Time, including SE Labrador
107 CA +4439-06336 America/Halifax Atlantic Time - Nova Scotia (peninsula), PEI
108 CA +4612-05957 America/Glace_Bay Atlantic Time - Nova Scotia (Cape Breton)
109 CA +4606-06447 America/Moncton Atlantic Time - New Brunswick
110 CA +5320-06025 America/Goose_Bay Atlantic Time - Labrador - most locations
111 CA +5125-05707 America/Blanc-Sablon Atlantic Standard Time - Quebec - Lower North Shore
112 CA +4339-07923 America/Toronto Eastern Time - Ontario & Quebec - most locations
113 CA +4901-08816 America/Nipigon Eastern Time - Ontario & Quebec - places that did not observe DST 19…
114 CA +4823-08915 America/Thunder_Bay Eastern Time - Thunder Bay, Ontario
115 CA +6344-06828 America/Iqaluit Eastern Time - east Nunavut - most locations
[all …]
/NextBSD/contrib/llvm/tools/clang/include/clang/StaticAnalyzer/Core/PathSensitive/
HDCallEvent.h419 static bool classof(const CallEvent *CA) { in classof() argument
420 return CA->getKind() >= CE_BEG_FUNCTION_CALLS && in classof()
421 CA->getKind() <= CE_END_FUNCTION_CALLS; in classof()
456 static bool classof(const CallEvent *CA) { in classof() argument
457 return CA->getKind() == CE_Function; in classof()
515 static bool classof(const CallEvent *CA) { in classof() argument
516 return CA->getKind() == CE_Block; in classof()
550 static bool classof(const CallEvent *CA) { in classof() argument
551 return CA->getKind() >= CE_BEG_CXX_INSTANCE_CALLS && in classof()
552 CA->getKind() <= CE_END_CXX_INSTANCE_CALLS; in classof()
[all …]
/NextBSD/crypto/heimdal/doc/
HDhx509.texi182 * Setting up a CA::
190 Setting up a CA
193 * Creating a CA certificate::
229 @item CA
232 Registration Authority, i.e., an optional system to which a CA delegates certain management functio…
234 An optional system to which a CA delegates the publication of certificate revocation lists.
250 @node What is X.509 ?, Setting up a CA, Introduction, Top
290 @item Certification Authority (CA) certificates
293 certificates (be it sub-ordinate CA certificates to build an trust anchors
294 or end entity certificates). There is no limit to how many certificates a CA
[all …]
/NextBSD/cddl/contrib/dtracetoolkit/Docs/
HDWho10 Location: CA, USA
15 Location: CA, USA
28 Location: CA, USA
45 Location: CA, USA
54 Location: CA, USA
/NextBSD/share/i18n/esdb/ISO646/
HDISO646.alias7 CA ca
8 CA csa_z243.4-1985-1
9 CA csa7-1
10 CA iso-ir-121
/NextBSD/crypto/openssh/
HDPROTOCOL.certkeys26 specify CA keys in ~/.ssh/known_hosts.
37 that is used to sign challenges. ssh-keygen performs the CA signing
121 The nonce field is a CA-provided random bitstring of arbitrary length
132 serial is an optional certificate serial number set by the CA to
133 provide an abbreviated way to refer to certificates from that CA.
134 If a CA does not wish to number its certificates it must set this
140 key id is a free-form text field that is filled in by the CA at the time
175 signature key contains the CA key used to sign the certificate.
176 The valid key types for CA keys are ssh-rsa, ssh-dss and the ECDSA types
180 be signed by a DSS or ECDSA CA key and vice-versa.
[all …]
/NextBSD/crypto/openssl/certs/
HDREADME.RootCerts1 The OpenSSL project does not (any longer) include root CA certificates.
4 * How can I set up a bundle of commercial root CA certificates?
/NextBSD/share/doc/papers/relengr/
HDref.bib7 %C Berkeley, CA
15 %C Berkeley, CA
/NextBSD/contrib/llvm/lib/Analysis/IPA/
HDInlineCost.cpp832 CallAnalyzer CA(TTI, ACT, *F, InlineConstants::IndirectCallThreshold, CS); in visitCallSite() local
833 if (CA.analyzeCall(CS)) { in visitCallSite()
836 Cost -= std::max(0, InlineConstants::IndirectCallThreshold - CA.getCost()); in visitCallSite()
1389 CallAnalyzer CA(TTIWP->getTTI(*Callee), ACT, *Callee, Threshold, CS); in getInlineCost() local
1390 bool ShouldInline = CA.analyzeCall(CS); in getInlineCost()
1392 DEBUG(CA.dump()); in getInlineCost()
1395 if (!ShouldInline && CA.getCost() < CA.getThreshold()) in getInlineCost()
1397 if (ShouldInline && CA.getCost() >= CA.getThreshold()) in getInlineCost()
1400 return llvm::InlineCost::get(CA.getCost(), CA.getThreshold()); in getInlineCost()

12345678