| /netbsd-src/crypto/external/bsd/openssl/dist/test/recipes/80-test_cmp_http_data/ |
| H A D | test_credentials.csv | 3 …red, -section,, -ref,_PBM_REF, -secret,_PBM_SECRET, -cert,root.crt, -key,signer.p12, -keypass,pass… 6 0,wrong secret - correct cert, -section,,BLANK,, -secret,pass:wrong, -cert,signer.crt, -key,signer.… 9 1,empty ref but correct cert, -section,, -ref,"""",BLANK,, -cert,signer.crt, -key,signer.p12, -keyp… 10 1,wrong ref but correct cert, -section,, -ref,wrong,BLANK,, -cert,signer.crt, -key,signer.p12, -key… 12 1,valid cert and key and keypass, -section,,BLANK,,-secret,"""", -cert,signer.crt, -key,signer.p12,… 13 0,cert missing arg, -section,,BLANK,,BLANK,, -cert,, -key,signer.p12, -keypass,pass:12345,BLANK,,BL… 14 0,key missing arg, -section,,BLANK,,BLANK,, -cert,signer.crt, -key,, -keypass,pass:12345,BLANK,,BLA… 15 0,keypass missing arg, -section,,BLANK,,BLANK,, -cert,signer.crt, -key,signer.p12, -keypass,,BLANK,… 16 0,keypass empty string, -section,,BLANK,,BLANK,, -cert,signer.crt, -key,signer.p12, -keypass,pass:,… 17 1,keypass no prefix, -section,,BLANK,,BLANK,, -cert,signer.crt, -key,signer.p12, -keypass,12345,BLA… [all …]
|
| H A D | test_commands.csv | 50 1,geninfo, -section,, -cmd,cr,, -cert,signer.crt, -key,signer.p12, -keypass,pass:12345,BLANK,, -gen… 51 0,geninfo missing argument, -section,, -cmd,cr,, -cert,signer.crt, -key,signer.p12, -keypass,pass:1… 52 0,geninfo bad syntax: leading '.', -section,, -cmd,cr,, -cert,signer.crt, -key,signer.p12, -keypass… 53 0,geninfo bad syntax: missing ':', -section,, -cmd,cr,, -cert,signer.crt, -key,signer.p12, -keypass… 54 0,geninfo bad syntax: double ':', -section,, -cmd,cr,, -cert,signer.crt, -key,signer.p12, -keypass,… 55 0,geninfo bad syntax: missing ':int', -section,, -cmd,cr,, -cert,signer.crt, -key,signer.p12, -keyp…
|
| /netbsd-src/crypto/external/bsd/openssl/dist/crypto/ocsp/ |
| H A D | ocsp_vfy.c | 30 static int ocsp_verify_signer(X509 *signer, int response, in ocsp_verify_signer() argument 42 if (!X509_STORE_CTX_init(ctx, st, signer, untrusted)) { in ocsp_verify_signer() 51 && X509_get_ext_by_NID(signer, NID_id_pkix_OCSP_noCheck, -1) >= 0) in ocsp_verify_signer() 77 X509 *signer, unsigned long flags) in ocsp_verify() argument 83 if ((skey = X509_get0_pubkey(signer)) == NULL) { in ocsp_verify() 88 ret = OCSP_REQUEST_verify(req, skey, signer->libctx, signer->propq); in ocsp_verify() 90 ret = OCSP_BASICRESP_verify(bs, skey, signer->libctx, signer->propq); in ocsp_verify() 101 X509 *signer, *x; in OCSP_basic_verify() local 104 int ret = ocsp_find_signer(&signer, bs, certs, flags); in OCSP_basic_verify() 113 if ((ret = ocsp_verify(NULL, bs, signer, flags)) <= 0) in OCSP_basic_verify() [all …]
|
| H A D | ocsp_srv.c | 168 X509 *signer, EVP_MD_CTX *ctx, in OCSP_basic_sign_ctx() argument 180 if (pkey == NULL || !X509_check_private_key(signer, pkey)) { in OCSP_basic_sign_ctx() 186 if (!OCSP_basic_add1_cert(brsp, signer) in OCSP_basic_sign_ctx() 193 if (!OCSP_RESPID_set_by_key(rid, signer)) in OCSP_basic_sign_ctx() 195 } else if (!OCSP_RESPID_set_by_name(rid, signer)) { in OCSP_basic_sign_ctx() 216 X509 *signer, EVP_PKEY *key, const EVP_MD *dgst, in OCSP_basic_sign() argument 227 signer->libctx, signer->propq, key, NULL)) { in OCSP_basic_sign() 231 i = OCSP_basic_sign_ctx(brsp, signer, ctx, certs, flags); in OCSP_basic_sign()
|
| /netbsd-src/crypto/external/bsd/openssl.old/dist/crypto/ocsp/ |
| H A D | ocsp_vfy.c | 33 X509 *signer, *x; in OCSP_basic_verify() local 37 int i, ret = ocsp_find_signer(&signer, bs, certs, flags); in OCSP_basic_verify() 53 skey = X509_get0_pubkey(signer); in OCSP_basic_verify() 81 init_res = X509_STORE_CTX_init(ctx, st, signer, untrusted); in OCSP_basic_verify() 141 int OCSP_resp_get0_signer(OCSP_BASICRESP *bs, X509 **signer, in OCSP_resp_get0_signer() argument 146 ret = ocsp_find_signer(signer, bs, extra_certs, 0); in OCSP_resp_get0_signer() 153 X509 *signer; in ocsp_find_signer() local 155 if ((signer = ocsp_find_signer_sk(certs, rid))) { in ocsp_find_signer() 156 *psigner = signer; in ocsp_find_signer() 160 (signer = ocsp_find_signer_sk(bs->certs, rid))) { in ocsp_find_signer() [all …]
|
| H A D | ocsp_srv.c | 178 X509 *signer, EVP_MD_CTX *ctx, in OCSP_basic_sign_ctx() argument 191 if (pkey == NULL || !X509_check_private_key(signer, pkey)) { in OCSP_basic_sign_ctx() 198 if (!OCSP_basic_add1_cert(brsp, signer)) in OCSP_basic_sign_ctx() 209 if (!OCSP_RESPID_set_by_key(rid, signer)) in OCSP_basic_sign_ctx() 211 } else if (!OCSP_RESPID_set_by_name(rid, signer)) { in OCSP_basic_sign_ctx() 233 X509 *signer, EVP_PKEY *key, const EVP_MD *dgst, in OCSP_basic_sign() argument 247 i = OCSP_basic_sign_ctx(brsp, signer, ctx, certs, flags); in OCSP_basic_sign()
|
| /netbsd-src/external/mpl/bind/dist/bin/tests/system/wildcard/ns1/ |
| H A D | sign.sh | 34 $SIGNER -o $zone -f $outfile $zonefile >/dev/null 2>signer.err || cat signer.err 47 $SIGNER -o $zone -f $outfile $zonefile >/dev/null 2>signer.err || cat signer.err 63 $SIGNER -3 - -H 10 -o $zone -f $outfile $zonefile >/dev/null 2>signer.err || cat signer.err 76 $SIGNER -3 - -H 10 -o $zone -f $outfile $zonefile >/dev/null 2>signer.err || cat signer.err 91 $SIGNER -o $zone -f $outfile $zonefile >/dev/null 2>signer.err || cat signer [all...] |
| /netbsd-src/crypto/external/bsd/openssl/dist/crypto/ts/ |
| H A D | ts_rsp_verify.c | 20 X509 *signer, STACK_OF(X509) **chain); 37 static int ts_check_signer_name(GENERAL_NAME *tsa_name, X509 *signer); 95 X509 *signer; in TS_RESP_verify_signature() local 128 signer = sk_X509_value(signers, 0); in TS_RESP_verify_signature() 136 if (!ts_verify_cert(store, untrusted, signer, &chain)) in TS_RESP_verify_signature() 146 j = PKCS7_signatureVerify(p7bio, token, si, signer); in TS_RESP_verify_signature() 153 *signer_out = signer; in TS_RESP_verify_signature() 154 X509_up_ref(signer); in TS_RESP_verify_signature() 172 X509 *signer, STACK_OF(X509) **chain) in ts_verify_cert() argument 184 if (!X509_STORE_CTX_init(cert_ctx, store, signer, untrusted)) in ts_verify_cert() [all …]
|
| /netbsd-src/external/mpl/dhcp/bind/dist/lib/dns/ |
| H A D | ssu.c | 286 dns_ssutable_checkrules(dns_ssutable_t *table, const dns_name_t *signer, in dns_ssutable_checkrules() argument 300 REQUIRE(signer == NULL || dns_name_isabsolute(signer)); in dns_ssutable_checkrules() 304 if (signer == NULL && addr == NULL) { in dns_ssutable_checkrules() 319 if (signer == NULL) { in dns_ssutable_checkrules() 323 if (!dns_name_matcheswildcard(signer, in dns_ssutable_checkrules() 329 if (!dns_name_equal(signer, rule->identity)) { in dns_ssutable_checkrules() 340 if (signer == NULL) { in dns_ssutable_checkrules() 376 if (signer != NULL) { in dns_ssutable_checkrules() 395 if (!dns_name_equal(signer, name)) { in dns_ssutable_checkrules() 400 if (!dns_name_issubdomain(name, signer)) { in dns_ssutable_checkrules() [all …]
|
| /netbsd-src/external/mpl/bind/dist/lib/dns/ |
| H A D | ssu.c | 280 dns_ssutable_checkrules(dns_ssutable_t *table, const dns_name_t *signer, 296 REQUIRE(signer == NULL || dns_name_isabsolute(signer)); in dns_ssutable_checkrules() 300 if (signer == NULL && addr == NULL) { in dns_ssutable_checkrules() 315 if (signer == NULL) { in dns_ssutable_checkrules() 319 if (!dns_name_matcheswildcard(signer, in dns_ssutable_checkrules() 325 if (!dns_name_equal(signer, rule->identity)) { in dns_ssutable_checkrules() 338 if (signer == NULL) { in dns_ssutable_checkrules() 377 if (signer != NULL) { in dns_ssutable_checkrules() 396 if (!dns_name_equal(signer, nam in dns_ssutable_checkrules() 282 dns_ssutable_checkrules(dns_ssutable_t * table,const dns_name_t * signer,const dns_name_t * name,const isc_netaddr_t * addr,bool tcp,dns_aclenv_t * env,dns_rdatatype_t type,const dns_name_t * target,const dst_key_t * key,const dns_ssurule_t ** rulep) dns_ssutable_checkrules() argument [all...] |
| /netbsd-src/crypto/external/bsd/openssl.old/dist/crypto/ts/ |
| H A D | ts_rsp_verify.c | 18 X509 *signer, STACK_OF(X509) **chain); 37 static int ts_check_signer_name(GENERAL_NAME *tsa_name, X509 *signer); 96 X509 *signer; in TS_RESP_verify_signature() local 129 signer = sk_X509_value(signers, 0); in TS_RESP_verify_signature() 131 if (!ts_verify_cert(store, certs, signer, &chain)) in TS_RESP_verify_signature() 141 j = PKCS7_signatureVerify(p7bio, token, si, signer); in TS_RESP_verify_signature() 148 *signer_out = signer; in TS_RESP_verify_signature() 149 X509_up_ref(signer); in TS_RESP_verify_signature() 166 X509 *signer, STACK_OF(X509) **chain) in ts_verify_cert() argument 178 if (!X509_STORE_CTX_init(cert_ctx, store, signer, untrusted)) in ts_verify_cert() [all …]
|
| /netbsd-src/crypto/external/bsd/openssl.old/dist/crypto/cms/ |
| H A D | cms_sd.c | 242 X509 *signer, EVP_PKEY *pk, const EVP_MD *md, in CMS_add1_signer() argument 249 if (!X509_check_private_key(signer, pk)) { in CMS_add1_signer() 261 X509_check_purpose(signer, -1, -1); in CMS_add1_signer() 263 X509_up_ref(signer); in CMS_add1_signer() 267 si->signer = signer; in CMS_add1_signer() 286 if (!cms_set1_SignerIdentifier(si->sid, signer, type)) in CMS_add1_signer() 362 if (!CMS_add1_cert(cms, signer)) in CMS_add1_signer() 453 if (si->signer) { in STACK_OF() 459 if (!sk_X509_push(signers, si->signer)) { in STACK_OF() 468 void CMS_SignerInfo_set1_signer_cert(CMS_SignerInfo *si, X509 *signer) in CMS_SignerInfo_set1_signer_cert() argument [all …]
|
| /netbsd-src/crypto/external/bsd/openssl.old/dist/test/ |
| H A D | ocspapitest.c | 111 X509 *signer = NULL, *tmp; in test_resp_signer() local 124 || !TEST_true(get_cert_and_key(&signer, &key)) in test_resp_signer() 125 || !TEST_true(sk_X509_push(extra_certs, signer)) in test_resp_signer() 126 || !TEST_true(OCSP_basic_sign(bs, signer, key, EVP_sha1(), in test_resp_signer() 130 || !TEST_int_eq(X509_cmp(tmp, signer), 0)) in test_resp_signer() 138 || !TEST_true(OCSP_basic_sign(bs, signer, key, EVP_sha1(), in test_resp_signer() 142 || !TEST_int_eq(X509_cmp(tmp, signer), 0)) in test_resp_signer() 148 X509_free(signer); in test_resp_signer()
|
| /netbsd-src/crypto/external/bsd/openssl/dist/test/ |
| H A D | ocspapitest.c | 115 X509 *signer = NULL, *tmp; in test_resp_signer() local 128 || !TEST_true(get_cert_and_key(&signer, &key)) in test_resp_signer() 129 || !TEST_true(sk_X509_push(extra_certs, signer)) in test_resp_signer() 130 || !TEST_true(OCSP_basic_sign(bs, signer, key, EVP_sha1(), in test_resp_signer() 134 || !TEST_int_eq(X509_cmp(tmp, signer), 0)) in test_resp_signer() 142 || !TEST_true(OCSP_basic_sign(bs, signer, key, EVP_sha1(), in test_resp_signer() 146 || !TEST_int_eq(X509_cmp(tmp, signer), 0)) in test_resp_signer() 152 X509_free(signer); in test_resp_signer()
|
| /netbsd-src/crypto/external/bsd/openssl.old/dist/crypto/pkcs7/ |
| H A D | pk7_smime.c | 208 X509 *signer; in PKCS7_verify() local 265 signer = sk_X509_value(signers, k); in PKCS7_verify() 267 if (!X509_STORE_CTX_init(cert_ctx, store, signer, in PKCS7_verify() 273 } else if (!X509_STORE_CTX_init(cert_ctx, store, signer, NULL)) { in PKCS7_verify() 350 signer = sk_X509_value(signers, i); in PKCS7_verify() 351 j = PKCS7_signatureVerify(p7bio, p7, si, signer); in PKCS7_verify() 379 X509 *signer; in STACK_OF() local 409 signer = NULL; in STACK_OF() 412 signer = X509_find_by_issuer_and_serial(certs, in STACK_OF() 414 if (!signer && !(flags & PKCS7_NOINTERN) in STACK_OF() [all …]
|
| /netbsd-src/crypto/external/bsd/openssl/dist/crypto/cms/ |
| H A D | cms_sd.c | 306 X509 *signer, EVP_PKEY *pk, const EVP_MD *md, in CMS_add1_signer() argument 315 if (!X509_check_private_key(signer, pk)) { in CMS_add1_signer() 326 X509_check_purpose(signer, -1, -1); in CMS_add1_signer() 328 X509_up_ref(signer); in CMS_add1_signer() 333 si->signer = signer; in CMS_add1_signer() 352 if (!ossl_cms_set1_SignerIdentifier(si->sid, signer, type, ctx)) in CMS_add1_signer() 437 if ((sc = OSSL_ESS_signing_cert_new_init(signer, in CMS_add1_signer() 443 if ((sc2 = OSSL_ESS_signing_cert_v2_new_init(md, signer, in CMS_add1_signer() 465 if (!CMS_add1_cert(cms, signer)) in CMS_add1_signer() 578 if (si->signer != NULL) { in STACK_OF() [all …]
|
| /netbsd-src/crypto/external/bsd/heimdal/dist/lib/hx509/ |
| H A D | revoke.c | 69 hx509_cert signer; member 131 hx509_cert_free(ocsp->signer); in free_ocsp() 178 hx509_cert signer = NULL; in verify_ocsp() local 204 ret = hx509_certs_find(context, certs, &q, &signer); in verify_ocsp() 206 ret = hx509_certs_find(context, ocsp->certs, &q, &signer); in verify_ocsp() 215 if (hx509_cert_cmp(signer, parent) != 0) { in verify_ocsp() 217 Certificate *s = _hx509_get_cert(signer); in verify_ocsp() 238 ret = hx509_cert_check_eku(context, signer, in verify_ocsp() 245 signer, in verify_ocsp() 255 ocsp->signer = signer; in verify_ocsp() [all …]
|
| H A D | crypto-ec.c | 140 const Certificate *signer, in ecdsa_verify_signature() argument 167 spi = &signer->tbsCertificate.subjectPublicKeyInfo; in ecdsa_verify_signature() 214 const hx509_private_key signer, in ecdsa_create_signature() argument 226 if (signer->ops && der_heim_oid_cmp(signer->ops->key_oid, ASN1_OID_ID_ECPUBLICKEY) != 0) in ecdsa_create_signature() 250 sig->length = ECDSA_size(signer->private_key.ecdsa); in ecdsa_create_signature() 262 sig->data, &siglen, signer->private_key.ecdsa); in ecdsa_create_signature() 283 ecdsa_available(const hx509_private_key signer, in ecdsa_available() argument 292 if (der_heim_oid_cmp(signer->ops->key_oid, &asn1_oid_id_ecPublicKey) != 0) in ecdsa_available() 300 group = EC_KEY_get0_group(signer->private_key.ecdsa); in ecdsa_available()
|
| /netbsd-src/crypto/external/bsd/openssl/dist/crypto/pkcs7/ |
| H A D | pk7_smime.c | 217 X509 *signer; in PKCS7_verify() local 276 signer = sk_X509_value(signers, k); in PKCS7_verify() 278 if (!X509_STORE_CTX_init(cert_ctx, store, signer, in PKCS7_verify() 285 } else if (!X509_STORE_CTX_init(cert_ctx, store, signer, NULL)) { in PKCS7_verify() 360 signer = sk_X509_value(signers, i); in PKCS7_verify() 361 j = PKCS7_signatureVerify(p7bio, p7, si, signer); in PKCS7_verify() 389 X509 *signer; in STACK_OF() local 419 signer = NULL; in STACK_OF() 422 signer = X509_find_by_issuer_and_serial(certs, in STACK_OF() 424 if (!signer && !(flags & PKCS7_NOINTERN) in STACK_OF() [all …]
|
| /netbsd-src/crypto/external/bsd/openssl.old/dist/doc/man3/ |
| H A D | PKCS7_verify.pod | 21 in which to search for signer's certificates. 31 PKCS7_get0_signers() retrieves the signer's certificates from I<p7>, it does 48 An attempt is made to locate all the signer's certificates, first looking in 51 If any signer's certificates cannot be located the operation fails. 53 Each signer's certificate is chain verified using the B<smimesign> purpose and 73 searched when locating the signer's certificates. 74 This means that all the signer's certificates must be in the I<certs> parameter. 83 If B<PKCS7_NOVERIFY> is set the signer's certificates are not chain verified. 87 the signer's certificates) must be contained in the trusted store. 95 in the I<certs> parameter. In this case if the signer's certificate is not one [all …]
|
| H A D | CMS_get0_SignerInfos.pod | 8 - CMS signedData signer functions 20 void CMS_SignerInfo_set1_signer_cert(CMS_SignerInfo *si, X509 *signer); 27 CMS_SignerInfo_get0_signer_id() retrieves the certificate signer identifier 37 CMS_SignerInfo_cert_cmp() compares the certificate B<cert> against the signer 42 B<signer>. 52 CMS. It will then obtain the signer certificate by some unspecified means 56 Once all signer certificates have been set CMS_verify() can be used.
|
| /netbsd-src/crypto/external/bsd/openssl/dist/doc/man3/ |
| H A D | PKCS7_verify.pod | 21 in which to search for signer's certificates. 31 PKCS7_get0_signers() retrieves the signer's certificates from I<p7>, it does 48 An attempt is made to locate all the signer's certificates, first looking in 51 If any signer's certificates cannot be located the operation fails. 53 Each signer's certificate is chain verified using the B<smimesign> purpose and 73 searched when locating the signer's certificates. 74 This means that all the signer's certificates must be in the I<certs> parameter. 83 If B<PKCS7_NOVERIFY> is set the signer's certificates are not chain verified. 87 the signer's certificates) must be contained in the trusted store. 95 in the I<certs> parameter. In this case if the signer's certificate is not one [all …]
|
| H A D | CMS_get0_SignerInfos.pod | 8 - CMS signedData signer functions 20 void CMS_SignerInfo_set1_signer_cert(CMS_SignerInfo *si, X509 *signer); 27 CMS_SignerInfo_get0_signer_id() retrieves the certificate signer identifier 37 CMS_SignerInfo_cert_cmp() compares the certificate B<cert> against the signer 42 B<signer>. 52 CMS. It will then obtain the signer certificate by some unspecified means 56 Once all signer certificates have been set CMS_verify() can be used.
|
| /netbsd-src/crypto/external/bsd/netpgp/dist/src/lib/ |
| H A D | validate.c | 182 const pgp_pubkey_t *signer) in check_binary_sig() argument 232 return pgp_check_sig(hashout, n, sig, signer); in check_binary_sig() 239 const pgp_key_t *signer; in pgp_validate_key_cb() local 302 signer = pgp_getkeybyid(io, key->keyring, in pgp_validate_key_cb() 305 if (!signer) { in pgp_validate_key_cb() 315 if (sigkey == &signer->enckey) { in pgp_validate_key_cb() 329 pgp_get_pubkey(signer), in pgp_validate_key_cb() 335 pgp_get_pubkey(signer), in pgp_validate_key_cb() 348 pgp_get_pubkey(signer), in pgp_validate_key_cb() 356 pgp_get_pubkey(signer), in pgp_validate_key_cb() [all …]
|
| H A D | signature.c | 469 const pgp_pubkey_t * signer) in pgp_check_sig() argument 480 &signer->key.dsa); in pgp_check_sig() 486 &signer->key.ecdsa); in pgp_check_sig() 492 &signer->key.rsa); in pgp_check_sig() 506 const pgp_pubkey_t *signer) in hash_and_check_sig() argument 512 return pgp_check_sig(hashout, n, sig, signer); in hash_and_check_sig() 518 const pgp_pubkey_t *signer, in finalise_sig() argument 522 return hash_and_check_sig(hash, sig, signer); in finalise_sig() 541 const pgp_pubkey_t *signer, in pgp_check_useridcert_sig() argument 554 return finalise_sig(&hash, sig, signer, raw_packet); in pgp_check_useridcert_sig() [all …]
|