Home
last modified time | relevance | path

Searched refs:certificates (Results 1 – 25 of 120) sorted by relevance

12345

/netbsd/src/crypto/external/bsd/heimdal/dist/doc/
Dhx509.texi197 * Issuing certificates::
209 @c * Issuing certificates::
211 * Issuing certificates::
253 A system or collection of distributed systems that stores certificates and CRLs
254 and serves as a means of distributing these certificates and CRLs to end entities
287 @section Type of certificates
295 Trust anchors are strictly not certificates, but commonly stored in a
297 the keys that an end entity would trust to validate other certificates.
301 @item End Entity (EE) certificates
303 End entity certificates are the most common types of certificates. End
[all …]
Dsetup.texi1304 certificates to get the initial ticket (usually the krbtgt
1320 and client certificates and the format used in the id-pkinit-san
1323 On how to create certificates, you should read @ref{Use OpenSSL to
1324 create certificates}.
1358 certificates and principals to the CA.
1399 certificates. hx509 supports several different syntaxes for specifying
1401 certificates embedded in PKCS#12 files, certificates embedded in
1402 PKCS#11 devices, and raw DER encoded certificates.
1410 DIR specifies a directory which contains certificates in the DER or
1414 iterating over certificates. This allows applications, in some
[all …]
/netbsd/src/crypto/external/bsd/heimdal/dist/lib/hx509/
Dhxtool-commands.in43 help = "certificate stores to pull certificates from"
62 help = "certificate store to pull certificates from"
110 help = "don't embed certificates"
136 help = "certificate store to pull certificates from"
216 help = "certificates used to receive the data"
262 help = "allow proxy certificates"
305 help = "print the content of the certificates"
319 help = "Print certificates"
332 help = "Validate content of certificates"
350 argument="in-certificates-1 ... out-certificate"
[all …]
Dcms.c735 if (sd->certificates == NULL) in any_to_certs()
738 for (i = 0; i < sd->certificates->len; i++) { in any_to_certs()
743 sd->certificates->val[i].data, in any_to_certs()
744 sd->certificates->val[i].length, in any_to_certs()
1432 const unsigned int i = sigctx->sd.certificates->len; in cert_process()
1436 ptr = realloc(sigctx->sd.certificates->val, in cert_process()
1437 (i + 1) * sizeof(sigctx->sd.certificates->val[0])); in cert_process()
1440 sigctx->sd.certificates->val = ptr; in cert_process()
1443 &sigctx->sd.certificates->val[i]); in cert_process()
1445 sigctx->sd.certificates->len++; in cert_process()
[all …]
DChangeLog78 * Add language to support querying certificates to find a
130 * test_pkcs11.in: Test password less certificates too
352 * ks_file.c: Add writing DER certificates.
591 * hxtool-commands.in: argument is certificates.. for crl-sign
812 * ca.c: Code to set CRLDistributionPoints in certificates.
990 certificates) Change --key argument to --out-key.
993 serialNumber (needed for reissuing certificates), Change --key
1044 * test_ca.in: Test generation of proxy certificates.
1046 * ca.c: Allow generation of proxy certificates, always include
1049 * hxtool.c: Allow generation of proxy certificates.
[all …]
Dhx509_err.et78 error_code REVOKE_STATUS_MISSING, "No revoke status found for certificates"
81 error_code REVOKE_NOT_SAME_PARENT, "Doesn't have same parent as other certificates"
/netbsd/src/external/bsd/openldap/dist/doc/guide/admin/
Dtls.sdf13 Note: For generating certificates, please reference {{URL:http://www.openldap.org/faq/data/cache/18…
17 TLS uses {{TERM:X.509}} certificates to carry client and server
18 identities. All servers are required to have valid certificates,
19 whereas client certificates are optional. Clients must have a
21 For more information on creating and managing certificates,
49 After obtaining the required certificates, a number of options must
51 make use of the certificates. At a minimum, the clients must be
53 {{TERM[expand]CA}} (CA) certificates it will trust. The server must
54 be configured with the {{TERM:CA}} certificates and also its own
58 and all of the trusted client certificates, so the server only
[all …]
/netbsd/src/crypto/external/bsd/openssh/dist/
DPROTOCOL.certkeys9 of X.509 certificates and uses raw keys. This approach has some benefits
16 certificates used are not traditional X.509 certificates, with numerous
41 Two additional types exist for RSA certificates to force use of
71 encoding of these certificates is also used for storing them on disk.
165 provide an abbreviated way to refer to certificates from that CA.
166 If a CA does not wish to number its certificates, it must set this
178 certificate is valid; hostnames for SSH_CERT_TYPE_HOST certificates and
179 usernames for SSH_CERT_TYPE_USER certificates. As a special case, a
199 This ensures that certificates containing unknown restrictions do not
201 enabled via extensions without breaking certificates' backwards
[all …]
DPROTOCOL.krl44 These sections use type KRL_SECTION_CERTIFICATES to revoke certificates by
46 certificates to be revoked and a reserved field whose contents is currently
73 certificates by listing their serial numbers. The cert_section_data in this
84 a range of serial numbers of certificates:
89 All certificates in the range serial_min <= serial <= serial_max are
110 ID" strings. This may be useful in revoking all certificates
122 certificates KRL section that may be used to provide optional or critical
145 (not certificates). They are less space efficient than serial numbers,
160 certificates) by listing their hashes:
DPROTOCOL.agent90 The key constraint extension allows certificates to be associated
98 Where "certsblob" consists of one or more certificates encoded as public
101 string[] certificates
111 the resultant certificates to be loaded to the agent. The default
/netbsd/src/external/bsd/pkg_install/dist/x509/
Dsigning.txt14 certificates. Those are commonly used for SSL. X509 implements a
16 certificates are installed and marked as trusted. A certificate used for
21 Optionally, a second list of certificates can be provided to fill gaps.
35 will serve as certificate for both purposes; a list of all certificates
/netbsd/src/crypto/external/bsd/openssl/dist/test/
DCAtsa.cnf82 # The following key usage flags are needed for TSA server certificates.
86 # PKIX recommendations harmless if included in all certificates.
95 # The following key usage flags are needed for TSA server certificates.
100 # PKIX recommendations harmless if included in all certificates.
/netbsd/src/crypto/external/bsd/openssl/dist/test/smime-certs/
Dca.cnf41 # PKIX recommendations harmless if included in all certificates.
53 # PKIX recommendations harmless if included in all certificates.
/netbsd/src/crypto/external/cpl/tpm-tools/dist/dist/
Dtpm-tools.spec.in34 PKCS#11 data store is protected by the TPM (keys, certificates, etc.).
35 You can import keys and certificates, list out the objects in the data
/netbsd/src/external/bsd/ntp/dist/util/
Dntp-keygen-opts.def170 public certificates.
216 name of generated host and signing certificates, without the
286 signing keys, certificates, and identity keys and parameters used in Autokey
449 certificates are compatible with
453 Private/public key files and certificates are compatible with
486 There is no need for one client to read the keys and certificates
640 Trusted hosts have trusted certificates;
641 all other hosts have nontrusted certificates.
662 flag to generate keys and nontrusted certificates.
695 After setting up the environment it is advisable to update certificates
[all …]
Dinvoke-ntp-keygen.texi20 signing keys, certificates, and identity keys and parameters used in Autokey
183 certificates are compatible with
187 Private/public key files and certificates are compatible with
220 There is no need for one client to read the keys and certificates
374 Trusted hosts have trusted certificates;
375 all other hosts have nontrusted certificates.
396 flag to generate keys and nontrusted certificates.
429 After setting up the environment it is advisable to update certificates
433 with the same flags as before to generate new certificates
495 either the keys or certificates without copying them
[all …]
/netbsd/src/external/ibm-public/postfix/dist/src/tls/
Dbad-rsa-key-last.pem.ref2 unknown: warning: error loading private keys and certificates from: bad-rsa-key-last.pem: disabling…
Dbad-ec-cert-before-key.pem.ref2 unknown: warning: error loading private keys and certificates from: bad-ec-cert-before-key.pem: dis…
Dbad-key-cert-mismatch.pem.ref2 unknown: warning: error loading private keys and certificates from: bad-key-cert-mismatch.pem: disa…
Dbad-back-to-back-keys.pem.ref2 unknown: warning: error loading private keys and certificates from: bad-back-to-back-keys.pem: disa…
/netbsd/src/crypto/external/bsd/openssl/dist/apps/
Dopenssl.cnf214 # PKIX recommendations harmless if included in all certificates.
221 # An alternative to produce certificates that aren't
228 # This is required for TSA certificates.
287 # PKIX recommendations harmless if included in all certificates.
294 # An alternative to produce certificates that aren't
Dopenssl-vms.cnf214 # PKIX recommendations harmless if included in all certificates.
221 # An alternative to produce certificates that aren't
228 # This is required for TSA certificates.
287 # PKIX recommendations harmless if included in all certificates.
294 # An alternative to produce certificates that aren't
/netbsd/src/external/bsd/wpa/dist/wpa_supplicant/doc/docbook/
Dwpa_supplicant.conf.sgml207 certificates. EAP-TLS uses both server side and client
208 certificates whereas EAP-PEAP and EAP-TTLS only require the server
214 <para>wpa_supplicant supports X.509 certificates in PEM and DER
/netbsd/src/external/bsd/file/dist/magic/magdir/
Dssl6 # Type: OpenSSL certificates/key files
/netbsd/src/crypto/dist/ipsec-tools/src/racoon/doc/
DREADME.privsep54 certs directory containing certificates, a scripts directory, and other
72 Now root/certs contains certificates and certs contains the keys. The idea is
73 that the public certificates are in the chroot'd area

12345