| /mirbsd/src/sbin/isakmpd/ |
| D | x509.c | 87 X509 *cert; member 101 x509_generate_kn(int id, X509 *cert) in x509_generate_kn() argument 122 cert)); in x509_generate_kn() 124 issuer = X509_get_issuer_name(cert); in x509_generate_kn() 125 subject = X509_get_subject_name(cert); in x509_generate_kn() 131 if (!x509_cert_get_key(cert, &key)) { in x509_generate_kn() 157 X509_STORE_CTX_init(&csc, x509_cas, cert, NULL); in x509_generate_kn() 161 X509_STORE_CTX_init(&csc, x509_certs, cert, NULL); in x509_generate_kn() 214 if (((tm = X509_get_notBefore(cert)) == NULL) || in x509_generate_kn() 303 tm = X509_get_notAfter(cert); in x509_generate_kn() [all …]
|
| D | ike_auth.c | 534 void *cert = 0; in rsa_sig_decode_hash() local 585 cert = handler->cert_get(rawcert, rawcertlen); in rsa_sig_decode_hash() 586 if (!cert) in rsa_sig_decode_hash() 590 if (!handler->cert_get_key(cert, &key)) { in rsa_sig_decode_hash() 593 handler->cert_free(cert); in rsa_sig_decode_hash() 599 exchange->recv_cert = cert; in rsa_sig_decode_hash() 602 cert); in rsa_sig_decode_hash() 632 cert = handler->cert_get(p->p + ISAKMP_CERT_DATA_OFF, in rsa_sig_decode_hash() 634 if (!cert) { in rsa_sig_decode_hash() 639 if (!handler->cert_validate(cert)) { in rsa_sig_decode_hash() [all …]
|
| /mirbsd/src/lib/libssl/src/crypto/pkcs12/ |
| D | p12_kiss.c | 68 EVP_PKEY **pkey, X509 **cert, STACK_OF(X509) **ca); 71 int passlen, EVP_PKEY **pkey, X509 **cert, 76 EVP_PKEY **pkey, X509 **cert, STACK_OF(X509) **ca, 85 int PKCS12_parse (PKCS12 *p12, const char *pass, EVP_PKEY **pkey, X509 **cert, in PKCS12_parse() argument 105 if(cert) *cert = NULL; in PKCS12_parse() 127 if (!parse_pk12 (p12, pass, -1, pkey, cert, ca)) in PKCS12_parse() 138 if (cert && *cert) X509_free(*cert); in PKCS12_parse() 147 EVP_PKEY **pkey, X509 **cert, STACK_OF(X509) **ca) in parse_pk12() argument 169 if (!parse_bags(bags, pass, passlen, pkey, cert, ca, in parse_pk12() 184 int passlen, EVP_PKEY **pkey, X509 **cert, in parse_bags() argument [all …]
|
| D | p12_crt.c | 65 PKCS12 *PKCS12_create(char *pass, char *name, EVP_PKEY *pkey, X509 *cert, in PKCS12_create() argument 98 if(!pkey || !cert) { in PKCS12_create() 103 if(!X509_check_private_key(cert, pkey)) return NULL; in PKCS12_create() 111 if(!(bag = PKCS12_x5092certbag(cert))) return NULL; in PKCS12_create() 113 X509_digest(cert, EVP_sha1(), keyid, &keyidlen); in PKCS12_create()
|
| /mirbsd/src/lib/libssl/src/crypto/x509v3/ |
| D | v3conf.c | 72 X509 *cert; in main() local 98 cert = PEM_read_X509(inf, NULL, NULL); in main() 99 if(!cert) { in main() 105 sk_pop_free(cert->cert_info->extensions, X509_EXTENSION_free); in main() 106 cert->cert_info->extensions = NULL; in main() 108 if(!X509V3_EXT_add_conf(conf, NULL, "test_section", cert)) { in main() 114 count = X509_get_ext_count(cert); in main() 117 ext = X509_get_ext(cert, i); in main()
|
| D | v3prin.c | 69 X509 *cert; in main() local 83 if(!(cert = PEM_read_X509(inf, NULL, NULL))) { in main() 89 count = X509_get_ext_count(cert); in main() 92 ext = X509_get_ext(cert, i); in main()
|
| D | v3_akey.c | 121 X509 *cert; in v2i_AUTHORITY_KEYID() local 144 cert = ctx->issuer_cert; in v2i_AUTHORITY_KEYID() 147 i = X509_get_ext_by_NID(cert, NID_subject_key_identifier, -1); in v2i_AUTHORITY_KEYID() 148 if((i >= 0) && (ext = X509_get_ext(cert, i))) in v2i_AUTHORITY_KEYID() 157 isname = X509_NAME_dup(X509_get_issuer_name(cert)); in v2i_AUTHORITY_KEYID() 158 serial = M_ASN1_INTEGER_dup(X509_get_serialNumber(cert)); in v2i_AUTHORITY_KEYID()
|
| /mirbsd/src/lib/libssl/src/ssl/ |
| D | s3_lib.c | 1173 if (!ssl_cert_inst(&s->cert)) in ssl3_ctrl() 1203 if ((s->cert != NULL) && (s->cert->rsa_tmp == NULL) && in ssl3_ctrl() 1204 ((s->cert->pkeys[SSL_PKEY_RSA_ENC].privatekey == NULL) || in ssl3_ctrl() 1205 (EVP_PKEY_size(s->cert->pkeys[SSL_PKEY_RSA_ENC].privatekey) > (512/8)))) in ssl3_ctrl() 1221 if (s->cert->rsa_tmp != NULL) in ssl3_ctrl() 1222 RSA_free(s->cert->rsa_tmp); in ssl3_ctrl() 1223 s->cert->rsa_tmp = rsa; in ssl3_ctrl() 1257 if (s->cert->dh_tmp != NULL) in ssl3_ctrl() 1258 DH_free(s->cert->dh_tmp); in ssl3_ctrl() 1259 s->cert->dh_tmp = dh; in ssl3_ctrl() [all …]
|
| D | ssl_cert.c | 186 CERT *ssl_cert_dup(CERT *cert) in ssl_cert_dup() argument 200 ret->key = &ret->pkeys[cert->key - &cert->pkeys[0]]; in ssl_cert_dup() 204 ret->valid = cert->valid; in ssl_cert_dup() 205 ret->mask = cert->mask; in ssl_cert_dup() 206 ret->export_mask = cert->export_mask; in ssl_cert_dup() 209 if (cert->rsa_tmp != NULL) in ssl_cert_dup() 211 RSA_up_ref(cert->rsa_tmp); in ssl_cert_dup() 212 ret->rsa_tmp = cert->rsa_tmp; in ssl_cert_dup() 214 ret->rsa_tmp_cb = cert->rsa_tmp_cb; in ssl_cert_dup() 218 if (cert->dh_tmp != NULL) in ssl_cert_dup() [all …]
|
| D | ssl_lib.c | 252 if (ctx->cert != NULL) in SSL_new() 264 s->cert = ssl_cert_dup(ctx->cert); in SSL_new() 265 if (s->cert == NULL) in SSL_new() 269 s->cert=NULL; /* Cannot really happen (see SSL_CTX_new) */ in SSL_new() 306 if (s->cert != NULL) in SSL_new() 307 ssl_cert_free(s->cert); in SSL_new() 466 if (s->cert != NULL) ssl_cert_free(s->cert); in SSL_free() 753 tmp=t->cert; in SSL_copy_session_id() 754 if (f->cert != NULL) in SSL_copy_session_id() 756 CRYPTO_add(&f->cert->references,1,CRYPTO_LOCK_SSL_CERT); in SSL_copy_session_id() [all …]
|
| D | ssl_rsa.c | 76 if (!ssl_cert_inst(&ssl->cert)) in SSL_use_certificate() 81 return(ssl_set_cert(ssl->cert,x)); in SSL_use_certificate() 162 if (!ssl_cert_inst(&ssl->cert)) in SSL_use_RSAPrivateKey() 176 ret=ssl_set_pkey(ssl->cert,pkey); in SSL_use_RSAPrivateKey() 333 if (!ssl_cert_inst(&ssl->cert)) in SSL_use_PrivateKey() 338 ret=ssl_set_pkey(ssl->cert,pkey); in SSL_use_PrivateKey() 410 if (!ssl_cert_inst(&ctx->cert)) in SSL_CTX_use_certificate() 415 return(ssl_set_cert(ctx->cert, x)); in SSL_CTX_use_certificate() 576 if (!ssl_cert_inst(&ctx->cert)) in SSL_CTX_use_RSAPrivateKey() 590 ret=ssl_set_pkey(ctx->cert, pkey); in SSL_CTX_use_RSAPrivateKey() [all …]
|
| D | s2_srvr.c | 184 if (s->cert == NULL) in ssl2_accept() 459 if (s->cert->pkeys[SSL_PKEY_RSA_ENC].privatekey == NULL) in get_client_master_key() 465 i=ssl_rsa_private_decrypt(s->cert,s->s2->tmp.enc, in get_client_master_key() 639 if (s->cert == NULL) in get_client_hello() 752 CRYPTO_add(&s->cert->references,1,CRYPTO_LOCK_SSL_CERT); in server_hello() 755 s->session->sess_cert=s->cert; in server_hello() 764 CRYPTO_add(&s->cert->references,1, in server_hello() 766 s->session->sess_cert=s->cert; in server_hello() 771 if (s->cert == NULL) in server_hello() 791 n=i2d_X509(s->cert->pkeys[SSL_PKEY_RSA_ENC].x509,NULL); in server_hello() [all …]
|
| D | s3_srvr.c | 197 if (s->cert == NULL) in ssl3_accept() 350 && (s->cert->pkeys[SSL_PKEY_RSA_ENC].privatekey == NULL in ssl3_accept() 352 …&& EVP_PKEY_size(s->cert->pkeys[SSL_PKEY_RSA_ENC].privatekey)*8 > SSL_C_EXPORT_PKEYLENGTH(s->s3->t… in ssl3_accept() 1078 CERT *cert; in ssl3_send_server_key_exchange() local 1088 cert=s->cert; in ssl3_send_server_key_exchange() 1097 rsa=cert->rsa_tmp; in ssl3_send_server_key_exchange() 1098 if ((rsa == NULL) && (s->cert->rsa_tmp_cb != NULL)) in ssl3_send_server_key_exchange() 1100 rsa=s->cert->rsa_tmp_cb(s, in ssl3_send_server_key_exchange() 1110 cert->rsa_tmp=rsa; in ssl3_send_server_key_exchange() 1127 dhp=cert->dh_tmp; in ssl3_send_server_key_exchange() [all …]
|
| /mirbsd/src/usr.bin/gzsig/ |
| D | x509.c | 57 X509 *cert; in x509_load_public() local 71 cert = PEM_read_bio_X509(bio, NULL, NULL, NULL); in x509_load_public() 74 if (cert == NULL) in x509_load_public() 77 evp = X509_get_pubkey(cert); in x509_load_public() 87 X509_free(cert); in x509_load_public() 90 X509_free(cert); in x509_load_public()
|
| /mirbsd/src/usr.sbin/httpd/src/modules/keynote/ |
| D | mod_keynote.c | 182 keynote_add_authorizer(request_rec *r, int sessid, X509 *cert) in keynote_add_authorizer() argument 190 key = X509_get_pubkey(cert); in keynote_add_authorizer() 191 subject = X509_get_subject_name(cert); in keynote_add_authorizer() 265 keynote_get_valid_times(request_rec *r, X509 *cert, char *before, size_t beforelen, char **timecomp… in keynote_get_valid_times() argument 271 if (((tm = X509_get_notBefore(cert)) == NULL) || in keynote_get_valid_times() 362 tm = X509_get_notAfter(cert); in keynote_get_valid_times() 455 keynote_fake_assertion(request_rec *r, int sessid, X509 *cert, EVP_PKEY *pkey, X509_NAME *name) in keynote_fake_assertion() argument 472 issuer = X509_get_issuer_name(cert); in keynote_fake_assertion() 473 subject = X509_get_subject_name(cert); in keynote_fake_assertion() 484 key = X509_get_pubkey(cert); in keynote_fake_assertion() [all …]
|
| /mirbsd/src/lib/libssl/src/crypto/pkcs7/ |
| D | pk7_smime.c | 206 p7->d.sign->cert)) in PKCS7_verify() 351 && p7->d.sign->cert) signer = in STACK_OF() 352 X509_find_by_issuer_and_serial (p7->d.sign->cert, in STACK_OF() 420 int PKCS7_decrypt(PKCS7 *p7, EVP_PKEY *pkey, X509 *cert, BIO *data, int flags) in PKCS7_decrypt() argument 436 if(!X509_check_private_key(cert, pkey)) { in PKCS7_decrypt() 442 if(!(tmpmem = PKCS7_dataDecode(p7, pkey, NULL, cert))) { in PKCS7_decrypt()
|
| D | pk7_doit.c | 215 if (ri->cert == NULL) in PKCS7_dataInit() 220 pkey=X509_get_pubkey(ri->cert); in PKCS7_dataInit() 233 pkey=X509_get_pubkey(ri->cert); in PKCS7_dataInit() 709 STACK_OF(X509) *cert; in PKCS7_dataVerify() 714 cert=p7->d.sign->cert; in PKCS7_dataVerify() 718 cert=p7->d.signed_and_enveloped->cert; in PKCS7_dataVerify() 728 x509=X509_find_by_issuer_and_serial(cert,ias->issuer,ias->serial); in PKCS7_dataVerify() 738 if(!X509_STORE_CTX_init(ctx,cert_store,x509,cert)) in PKCS7_dataVerify()
|
| /mirbsd/src/lib/libssl/src/apps/ |
| D | sess_id.c | 97 int cert=0,noout=0,text=0; in MAIN() local 137 cert= ++num; in MAIN() 232 if (cert) in MAIN() 241 if (!noout && !cert) in MAIN()
|
| D | pkcs12.c | 83 int get_cert_chain (X509 *cert, X509_STORE *store, STACK_OF(X509) **chain); 545 X509 *cert = NULL; in MAIN() local 546 cert = sk_X509_value(certs, i); in MAIN() 547 bag = PKCS12_x5092certbag(cert); in MAIN() 549 if(cert == ucert) { in MAIN() 849 int get_cert_chain (X509 *cert, X509_STORE *store, STACK_OF(X509) **chain) in get_cert_chain() argument 858 X509_STORE_CTX_init(&store_ctx, store, cert, NULL); in get_cert_chain() 891 X509 *cert; in cert_load() local 896 while((cert = PEM_read_bio_X509(in, NULL, NULL, NULL))) { in cert_load() 901 sk_X509_push(sk, cert); in cert_load()
|
| /mirbsd/src/usr.sbin/httpd/src/modules/ssl/ |
| D | ssl_util_ssl.c | 297 BOOL SSL_X509_isSGC(X509 *cert) in SSL_X509_isSGC() argument 307 idx = X509_get_ext_by_NID(cert, NID_ext_key_usage, -1); in SSL_X509_isSGC() 309 ext = X509_get_ext(cert, idx); in SSL_X509_isSGC() 324 BOOL SSL_X509_getBC(X509 *cert, int *ca, int *pathlen) in SSL_X509_getBC() argument 332 if ((idx = X509_get_ext_by_NID(cert, NID_basic_constraints, -1)) < 0) in SSL_X509_getBC() 334 ext = X509_get_ext(cert, idx); in SSL_X509_getBC()
|
| D | ssl_engine_kernel.c | 667 X509 *cert; in ssl_hook_Access() local 875 && (cert = SSL_get_peer_certificate(ssl)) != NULL) { in ssl_hook_Access() 877 X509_free(cert); in ssl_hook_Access() 970 cert = SSL_get_peer_certificate(ssl); in ssl_hook_Access() 971 if (certstack == NULL && cert != NULL) { in ssl_hook_Access() 978 sk_X509_push(certstack, cert); in ssl_hook_Access() 984 if (cert == NULL) in ssl_hook_Access() 985 cert = sk_X509_value(certstack, 0); in ssl_hook_Access() 991 X509_STORE_CTX_init(&certstorectx, certstore, cert, certstack); in ssl_hook_Access() 1040 if ((cert = SSL_get_peer_certificate(ssl)) != NULL) { in ssl_hook_Access() [all …]
|
| /mirbsd/src/gnu/usr.sbin/sendmail/sendmail/ |
| D | tls.c | 1233 X509 *cert; local 1251 cert = SSL_get_peer_certificate(ssl); 1256 who, verifyok, (unsigned long) cert); 1257 if (cert != NULL) 1264 subj = X509_get_subject_name(cert); 1265 issuer = X509_get_issuer_name(cert); 1321 if (X509_digest(cert, EVP_md5(), md, &n) != 0 && n > 0) 1350 if (cert != NULL) 1367 if (cert != NULL) 1368 X509_free(cert); [all …]
|
| /mirbsd/src/lib/libssl/src/crypto/ocsp/ |
| D | ocsp_cl.c | 119 int OCSP_request_add1_cert(OCSP_REQUEST *req, X509 *cert) in OCSP_request_add1_cert() argument 126 if (!cert) return 1; in OCSP_request_add1_cert() 130 if(!sk_X509_push(sig->certs, cert)) return 0; in OCSP_request_add1_cert() 131 CRYPTO_add(&cert->references, 1, CRYPTO_LOCK_X509); in OCSP_request_add1_cert()
|
| D | ocsp_vfy.c | 68 static int ocsp_match_issuerid(X509 *cert, OCSP_CERTID *cid, STACK_OF(OCSP_SINGLERESP) *sresp); 294 static int ocsp_match_issuerid(X509 *cert, OCSP_CERTID *cid, in ocsp_match_issuerid() argument 314 iname = X509_get_subject_name(cert); in ocsp_match_issuerid() 319 X509_pubkey_digest(cert, EVP_sha1(), md, NULL); in ocsp_match_issuerid() 334 ret = ocsp_match_issuerid(cert, tmpid, NULL); in ocsp_match_issuerid()
|
| /mirbsd/src/lib/libssl/src/doc/crypto/ |
| D | PKCS12_parse.pod | 11 int PKCS12_parse(PKCS12 *p12, const char *pass, EVP_PKEY **pkey, X509 **cert, STACK_OF(X509) **ca); 19 certificate to B<*cert> and any additional certificates to B<*ca>. 23 The parameters B<pkey> and B<cert> cannot be B<NULL>. B<ca> can be <NULL>
|