| /NextBSD/crypto/openssl/apps/ |
| HD | verify.c | 86 STACK_OF(X509) *untrusted = NULL, *trusted = NULL; in MAIN() 206 trusted = load_certs(bio_err, trustfile, FORMAT_PEM, in MAIN() 208 if (!trusted) in MAIN() 223 if (1 != check(cert_ctx, NULL, untrusted, trusted, crls, e)) in MAIN() 227 if (1 != check(cert_ctx, argv[i], untrusted, trusted, crls, e)) in MAIN() 255 sk_X509_pop_free(trusted, X509_free); in MAIN()
|
| /NextBSD/usr.sbin/pkg/ |
| HD | pkg.c | 65 bool trusted; member 731 struct fingerprint_list *trusted, *revoked; in verify_signature() local 741 trusted = revoked = NULL; in verify_signature() 751 if ((trusted = load_fingerprints(path, &trusted_count)) == NULL) { in verify_signature() 756 if (trusted_count == 0 || trusted == NULL) { in verify_signature() 773 sc->trusted = false; in verify_signature() 790 STAILQ_FOREACH(fingerprint, trusted, next) { in verify_signature() 792 sc->trusted = true; in verify_signature() 798 if (sc->trusted == false) { in verify_signature() 815 if (trusted) in verify_signature() [all …]
|
| /NextBSD/crypto/openssl/doc/apps/ |
| HD | verify.pod | 33 [B<-trusted file>] 49 A directory of trusted certificates. The certificates should have names 56 A file of trusted certificates. The file should contain multiple certificates 137 trusted, then OpenSSL will continue to check to see if an alternative chain can 138 be found that is trusted. With this option that behaviour is suppressed so that 142 =item B<-trusted file> 144 A file of additional trusted certificates. The file should contain multiple 232 is found the remaining lookups are from the trusted certificates. The root CA 233 is always looked up in the trusted certificate list: if the certificate to 234 verify is a root certificate then an exact match must be found in the trusted [all …]
|
| HD | ocsp.pod | 144 file or pathname containing trusted CA certificates. These are used to verify 161 trusted and no additional checks will be performed on them. This is useful 167 file containing explicitly trusted responder certificates. Equivalent to the 200 do not explicitly trust the root CA if it is set to be trusted for OCSP signing. 298 building up a certificate chain in the process. The locations of the trusted 315 CA is checked to see if it is trusted for OCSP signing. If it is the OCSP 326 CA can be trusted for OCSP signing. For example: 330 Alternatively the responder certificate itself can be explicitly trusted
|
| HD | x509.pod | 240 A B<trusted certificate> is an ordinary certificate which has several 245 must be "trusted". By default a trusted certificate must be stored 251 may be trusted for SSL client but not SSL server use. 264 this causes B<x509> to output a B<trusted> certificate. An ordinary 265 or trusted certificate can be input but by default an ordinary 267 B<-trustout> option a trusted certificate is output. A trusted 281 clears all the permitted or trusted uses of the certificate. 289 adds a trusted certificate use. Any object name can be used here 705 Set a certificate to be trusted for SSL client use and change set its alias to
|
| /NextBSD/crypto/openssl/doc/crypto/ |
| HD | PKCS7_verify.pod | 19 the signer's certificate. B<store> is a trusted certficate store (used for 45 the supplied trusted certificate store. Any internal certificates in the message 69 the signer's certificate) must be contained in the trusted store. 89 signer it cannot be trusted without additional evidence (such as a trusted 103 The trusted certificate store is not searched for the signers certificate,
|
| HD | CMS_verify.pod | 19 the signing certificate(s). B<store> is a trusted certificate store used for 43 the supplied trusted certificate store. Any internal certificates in the message 97 signer it cannot be trusted without additional evidence (such as a trusted 111 The trusted certificate store is not searched for the signing certificate,
|
| HD | X509_STORE_CTX_new.pod | 46 X509_verify_cert(). The trusted certificate store is set to B<store>, the end 52 X509_STORE_CTX_trusted_stack() sets the set of trusted certificates of B<ctx> 53 to B<sk>. This is an alternative way of specifying trusted certificates
|
| HD | X509_STORE_CTX_get_error.pod | 148 in the list of trusted certificates. 158 This normally means the list of trusted certificates is not complete. 186 =item B<X509_V_ERR_CERT_UNTRUSTED: certificate not trusted> 188 the root CA is not marked as trusted for the specified purpose.
|
| HD | CMS_verify_receipt.pod | 18 signing certificate. B<store> is a trusted certificate store (used for chain
|
| /NextBSD/contrib/ntp/util/ |
| HD | ntp-keygen-opts.def | 242 name = trusted-cert; 244 descrip = "trusted certificate (TC scheme)"; 246 Generate a trusted certificate. By default, the program generates 247 a non-trusted certificate. 388 Designate one of them as the trusted host (TH) using 424 Additional information on trusted groups and identity schemes is on the 576 but it is possible for a trusted agent (TA) to generate these files 578 The subject name and trusted name default to the hostname 580 It is convenient to designate the owner name and trusted name 583 while the trusted name is used for the identity files. [all …]
|
| HD | invoke-ntp-keygen.texi | 123 Designate one of them as the trusted host (TH) using 159 Additional information on trusted groups and identity schemes is on the 311 but it is possible for a trusted agent (TA) to generate these files 313 The subject name and trusted name default to the hostname 315 It is convenient to designate the owner name and trusted name 318 while the trusted name is used for the identity files. 430 but it is possible for a trusted agent (TA) to generate these files 432 The subject name and trusted name default to the hostname 434 It is convenient to designate the owner name and trusted name 437 while the trusted name is used for the identity files. [all …]
|
| /NextBSD/share/examples/etc/ |
| HD | README.examples | 27 hosts.allow - defines allow trusted hosts 28 hosts.equiv - defines system-wide trusted hosts (see ruserok(3)) 29 hosts.lpd - defines trusted hosts for lpd(8) 44 opieaccess - OPIE database of trusted networks
|
| /NextBSD/crypto/openssl/doc/ssl/ |
| HD | SSL_CTX_set_cert_store.pod | 25 In order to verify the certificates presented by the peer, trusted CA 30 Typically the trusted certificate store is handled indirectly via using
|
| HD | SSL_CTX_load_verify_locations.pod | 5 SSL_CTX_load_verify_locations - set default locations for trusted CA 19 available via B<CAfile> and B<CApath> are trusted.
|
| HD | SSL_CTX_set_client_cert_cb.pod | 71 either adding the intermediate CA certificates into the trusted 73 CA certificates that otherwise maybe would not be trusted), or by adding
|
| HD | SSL_CTX_use_certificate.pod | 128 to allow the use of complete certificate chains even when no trusted CA 130 the trusted CA storage. 134 locations of trusted CA certificates, see
|
| /NextBSD/share/keys/pkg/ |
| HD | Makefile | 3 SUBDIR= trusted
|
| /NextBSD/contrib/ldns/drill/ |
| HD | securetrace.c | 24 ds_key_match(ldns_rr_list *ds, ldns_rr_list *trusted) 31 if (!trusted || !ds) { 41 if (!ds || !trusted) { 45 for (i = 0; i < ldns_rr_list_rr_count(trusted); i++) { 46 rr_i = ldns_rr_list_rr(trusted, i);
|
| /NextBSD/share/keys/pkg/trusted/ |
| HD | Makefile | 5 FILESDIR= ${SHAREDIR}/keys/pkg/trusted
|
| /NextBSD/share/skel/ |
| HD | dot.rhosts | 3 # .rhosts - trusted remote host name and user data base
|
| /NextBSD/sbin/ldconfig/ |
| HD | elfhints.c | 59 add_dir(const char *hintsfile, const char *name, int trusted) in add_dir() argument 65 if (!trusted && !insecure) { in add_dir()
|
| /NextBSD/crypto/heimdal/lib/asn1/ |
| HD | pkinit.asn1 | 42 td-trusted-certifiers INTEGER ::= 104 157 trusted-certifiers [2] SEQUENCE OF TrustedCA-Win2k OPTIONAL,
|
| /NextBSD/contrib/wpa/src/tls/ |
| HD | x509v3.h | 115 int x509_certificate_chain_validate(struct x509_certificate *trusted,
|
| /NextBSD/contrib/ntp/html/scripts/ |
| HD | authopt.txt | 10 <li class='inline'><a href='authopt.html#trustedkey'>trustedkey - specify trusted key IDs</a></li>\
|