/freebsd-10.2-release/crypto/openssl/crypto/ocsp/ |
H A D | ocsp_vfy.c | 84 X509 *signer, *x; local 89 ret = ocsp_find_signer(&signer, bs, certs, st, flags); 99 skey = X509_get_pubkey(signer); 124 init_res = X509_STORE_CTX_init(&ctx, st, signer, untrusted); 184 X509 *signer; local 186 if ((signer = ocsp_find_signer_sk(certs, rid))) { 187 *psigner = signer; 191 (signer = ocsp_find_signer_sk(bs->certs, rid))) { 192 *psigner = signer; 231 X509 *signer, *sc local 373 X509 *signer; local 439 X509 *signer; local [all...] |
H A D | ocsp_srv.c | 219 X509 *signer, EVP_PKEY *key, const EVP_MD *dgst, 225 if (!X509_check_private_key(signer, key)) { 232 if (!OCSP_basic_add1_cert(brsp, signer)) 244 X509_pubkey_digest(signer, EVP_sha1(), md, NULL); 251 if (!X509_NAME_set(&rid->value.byName, X509_get_subject_name(signer))) 218 OCSP_basic_sign(OCSP_BASICRESP *brsp, X509 *signer, EVP_PKEY *key, const EVP_MD *dgst, STACK_OF(X509) *certs, unsigned long flags) argument
|
H A D | ocsp_cl.c | 151 X509 *signer, 160 if (!OCSP_request_set1_name(req, X509_get_subject_name(signer))) 166 if (!X509_check_private_key(signer, key)) { 176 if (!OCSP_request_add1_cert(req, signer)) 150 OCSP_request_sign(OCSP_REQUEST *req, X509 *signer, EVP_PKEY *key, const EVP_MD *dgst, STACK_OF(X509) *certs, unsigned long flags) argument
|
/freebsd-10.2-release/crypto/openssl/crypto/ts/ |
H A D | ts_rsp_verify.c | 69 X509 *signer, STACK_OF(X509) **chain); 87 static int TS_check_signer_name(GENERAL_NAME *tsa_name, X509 *signer); 149 * - Checks if there is one and only one signer. 151 * - Check the extended key usage and key usage fields of the signer 157 * - Returns the signer certificate in 'signer', if 'signer' is not NULL. 165 X509 *signer; local 183 /* Check if there is one and only one signer. */ 198 * Get hold of the signer certificat 249 TS_verify_cert(X509_STORE *store, STACK_OF(X509) *untrusted, X509 *signer, STACK_OF(X509) **chain) argument 430 X509 *signer = NULL; local 698 TS_check_signer_name(GENERAL_NAME *tsa_name, X509 *signer) argument [all...] |
/freebsd-10.2-release/crypto/openssl/crypto/pkcs7/ |
H A D | pk7_smime.c | 253 X509 *signer; local 306 signer = sk_X509_value(signers, k); 308 if (!X509_STORE_CTX_init(&cert_ctx, store, signer, 315 } else if (!X509_STORE_CTX_init(&cert_ctx, store, signer, NULL)) { 390 signer = sk_X509_value(signers, i); 391 j = PKCS7_signatureVerify(p7bio, p7, si, signer); 420 X509 *signer; local 450 signer = NULL; 453 signer = X509_find_by_issuer_and_serial(certs, 455 if (!signer [all...] |
/freebsd-10.2-release/crypto/openssl/crypto/cms/ |
H A D | cms_sd.c | 276 X509 *signer, EVP_PKEY *pk, const EVP_MD *md, 283 if (!X509_check_private_key(signer, pk)) { 294 X509_check_purpose(signer, -1, -1); 297 CRYPTO_add(&signer->references, 1, CRYPTO_LOCK_X509); 300 si->signer = signer; 312 if (!cms_set1_SignerIdentifier(si->sid, signer, type)) 396 if (!CMS_add1_cert(cms, signer)) 464 if (si->signer) { 470 if (!sk_X509_push(signers, si->signer)) { 275 CMS_add1_signer(CMS_ContentInfo *cms, X509 *signer, EVP_PKEY *pk, const EVP_MD *md, unsigned int flags) argument 479 CMS_SignerInfo_set1_signer_cert(CMS_SignerInfo *si, X509 *signer) argument 550 CMS_SignerInfo_get0_algs(CMS_SignerInfo *si, EVP_PKEY **pk, X509 **signer, X509_ALGOR **pdig, X509_ALGOR **psig) argument [all...] |
H A D | cms_smime.c | 271 X509 *signer; local 273 CMS_SignerInfo_get0_algs(si, NULL, &signer, NULL, NULL); 274 if (!X509_STORE_CTX_init(&ctx, store, signer, certs)) { 305 X509 *signer; local 312 /* Attempt to find all signer certificates */ 323 CMS_SignerInfo_get0_algs(si, NULL, &signer, NULL, NULL); 324 if (signer)
|
H A D | cms.h | 257 X509 *signer, EVP_PKEY *pk, const EVP_MD *md, 261 void CMS_SignerInfo_set1_signer_cert(CMS_SignerInfo *si, X509 *signer); 269 X509 **signer, X509_ALGOR **pdig,
|
/freebsd-10.2-release/crypto/heimdal/lib/hx509/ |
H A D | revoke.c | 67 hx509_cert signer; member in struct:revoke_ocsp 129 hx509_cert_free(ocsp->signer); 176 hx509_cert signer = NULL; local 202 ret = hx509_certs_find(context, certs, &q, &signer); 204 ret = hx509_certs_find(context, ocsp->certs, &q, &signer); 209 * If signer certificate isn't the CA certificate, lets check the 210 * it is the CA that signed the signer certificate and the OCSP EKU 213 if (hx509_cert_cmp(signer, parent) != 0) { 215 Certificate *s = _hx509_get_cert(signer); 220 hx509_set_error_string(context, 0, ret, "Revoke OCSP signer i 462 hx509_cert signer; local 967 hx509_ocsp_request(hx509_context context, hx509_certs reqcerts, hx509_certs pool, hx509_cert signer, const AlgorithmIdentifier *digest, heim_octet_string *request, heim_octet_string *nonce) argument 1425 hx509_crl_sign(hx509_context context, hx509_cert signer, hx509_crl crl, heim_octet_string *os) argument [all...] |
H A D | test_windows.in | 87 --signer=FILE:wca.pem || exit 1
|
H A D | crypto.c | 336 const Certificate *signer, 363 spi = &signer->tbsCertificate.subjectPublicKeyInfo; 414 const hx509_private_key signer, 426 if (signer->ops && der_heim_oid_cmp(signer->ops->key_oid, ASN1_OID_ID_ECPUBLICKEY) != 0) 452 sig->length = ECDSA_size(signer->private_key.ecdsa); 464 sig->data, &siglen, signer->private_key.ecdsa); 485 ecdsa_available(const hx509_private_key signer, argument 494 if (der_heim_oid_cmp(signer->ops->key_oid, &asn1_oid_id_ecPublicKey) != 0) 502 group = EC_KEY_get0_group(signer 334 ecdsa_verify_signature(hx509_context context, const struct signature_alg *sig_alg, const Certificate *signer, const AlgorithmIdentifier *alg, const heim_octet_string *data, const heim_octet_string *sig) argument 412 ecdsa_create_signature(hx509_context context, const struct signature_alg *sig_alg, const hx509_private_key signer, const AlgorithmIdentifier *alg, const heim_octet_string *data, AlgorithmIdentifier *signatureAlgorithm, heim_octet_string *sig) argument 533 rsa_verify_signature(hx509_context context, const struct signature_alg *sig_alg, const Certificate *signer, const AlgorithmIdentifier *alg, const heim_octet_string *data, const heim_octet_string *sig) argument 642 rsa_create_signature(hx509_context context, const struct signature_alg *sig_alg, const hx509_private_key signer, const AlgorithmIdentifier *alg, const heim_octet_string *data, AlgorithmIdentifier *signatureAlgorithm, heim_octet_string *sig) argument 1037 dsa_verify_signature(hx509_context context, const struct signature_alg *sig_alg, const Certificate *signer, const AlgorithmIdentifier *alg, const heim_octet_string *data, const heim_octet_string *sig) argument 1145 evp_md_create_signature(hx509_context context, const struct signature_alg *sig_alg, const hx509_private_key signer, const AlgorithmIdentifier *alg, const heim_octet_string *data, AlgorithmIdentifier *signatureAlgorithm, heim_octet_string *sig) argument 1185 evp_md_verify_signature(hx509_context context, const struct signature_alg *sig_alg, const Certificate *signer, const AlgorithmIdentifier *alg, const heim_octet_string *data, const heim_octet_string *sig) argument 1591 const Certificate *signer = NULL; local 1622 _hx509_create_signature(hx509_context context, const hx509_private_key signer, const AlgorithmIdentifier *alg, const heim_octet_string *data, AlgorithmIdentifier *signatureAlgorithm, heim_octet_string *sig) argument 1649 _hx509_create_signature_bitstring(hx509_context context, const hx509_private_key signer, const AlgorithmIdentifier *alg, const heim_octet_string *data, AlgorithmIdentifier *signatureAlgorithm, heim_bit_string *sig) argument [all...] |
H A D | hxtool.c | 364 hx509_certs store, pool, anchors, signer = NULL; local 421 ret = hx509_certs_filter(context, store, q, &signer); 446 signer, 480 if (signer) { 481 ret = hx509_certs_iter_f(context, signer, print_signer, header); 483 hx509_err(context, 1, ret, "print signer"); 503 hx509_certs_free(&signer); 1225 hx509_private_key *signer) 1275 ret = read_private_key(fn, signer); 1286 hx509_private_key signer; local 1224 get_key(const char *fn, const char *type, int optbits, hx509_private_key *signer) argument 1750 hx509_cert signer = NULL, cert = NULL; local 2030 hx509_certs signer = NULL; local 2114 hx509_cert signer = NULL; local [all...] |
H A D | req.c | 172 const hx509_private_key signer, 214 signer, 170 _hx509_request_to_pkcs10(hx509_context context, const hx509_request req, const hx509_private_key signer, heim_octet_string *request) argument
|
H A D | test_cms.in | 81 echo "create signed data (no signer)" 83 --no-signer \ 88 echo "verify signed data (no signer)" 91 --no-signer-allowed \ 93 sd.data sd.data.out > signer.tmp || exit 1 95 grep "unsigned" signer.tmp > /dev/null || exit 1 97 echo "verify signed data (no signer) (test failure)" 101 sd.data sd.data.out 2> signer.tmp && exit 1 102 grep "No signers where found" signer.tmp > /dev/null || exit 1 217 --signer [all...] |
H A D | ca.c | 985 hx509_private_key signer, 1402 signer, 1529 * @param signer the CA certificate object to sign with (need private key). 1540 hx509_cert signer, 1549 signer_cert = _hx509_get_cert(signer); 1557 _hx509_cert_private_key(signer), 1573 * @param signer private key to sign with. 1584 hx509_private_key signer, 1589 signer, 983 ca_sign(hx509_context context, hx509_ca_tbs tbs, hx509_private_key signer, const AuthorityKeyIdentifier *ai, const Name *issuername, hx509_cert *certificate) argument 1538 hx509_ca_sign(hx509_context context, hx509_ca_tbs tbs, hx509_cert signer, hx509_cert *certificate) argument 1582 hx509_ca_sign_self(hx509_context context, hx509_ca_tbs tbs, hx509_private_key signer, hx509_cert *certificate) argument
|
H A D | test_ca.in | 72 --signer=FILE:$srcdir/data/ca.crt,$srcdir/data/ca.key || exit 1 83 --signer=FILE:$srcdir/data/ca.crt,$srcdir/data/ca.key \ 96 --signer=FILE:$srcdir/data/ca.crt,$srcdir/data/ca.key \
|
/freebsd-10.2-release/crypto/heimdal/kdc/ |
H A D | kx509.c | 149 hx509_cert signer = NULL; local 182 ret = hx509_certs_find(context->hx509ctx, certs, q, &signer); 251 ret = hx509_ca_sign(context->hx509ctx, tbs, signer, &cert); 252 hx509_cert_free(signer); 269 if (signer) 270 hx509_cert_free(signer);
|
/freebsd-10.2-release/crypto/openssl/apps/ |
H A D | smime.c | 102 X509 *cert = NULL, *recip = NULL, *signer = NULL; local 243 } else if (!strcmp(*args, "-signer")) { 246 /* If previous -signer argument add signer to list */ 275 /* If previous -inkey arument add signer to list */ 278 BIO_puts(bio_err, "Illegal -inkey without -signer\n"); 339 /* Check to see if any final signer needs to be appended */ 341 BIO_puts(bio_err, "Illegal -inkey without -signer\n"); 355 BIO_printf(bio_err, "No signer certificate specified\n"); 408 "-nointern don't search certificates in message for signer\ [all...] |
H A D | cms.c | 118 X509 *cert = NULL, *recip = NULL, *signer = NULL; local 361 } else if (!strcmp(*args, "-signer")) { 364 /* If previous -signer argument add signer to list */ 397 /* If previous -inkey arument add signer to list */ 400 BIO_puts(bio_err, "Illegal -inkey without -signer\n"); 475 BIO_puts(bio_err, "Illegal -inkey without -signer\n"); 478 /* Check to see if any final signer needs to be appended */ 490 BIO_printf(bio_err, "No signer certificate specified\n"); 545 "-nointern don't search certificates in message for signer\ [all...] |
H A D | ts.c | 100 char *signer, char *chain, const char *policy, 106 char *signer, char *chain, 149 char *signer = NULL; local 235 } else if (strcmp(*argv, "-signer") == 0) { 238 signer = *++argv; 319 password, inkey, signer, chain, policy, 347 "[-signer tsa_cert.pem] [-inkey private_key.pem] " 650 char *signer, char *chain, const char *policy, 678 passin, inkey, signer, chain, policy); 774 char *signer, cha 648 reply_command(CONF *conf, char *section, char *engine, char *queryfile, char *passin, char *inkey, char *signer, char *chain, const char *policy, char *in, int token_in, char *out, int token_out, int text) argument 772 create_response(CONF *conf, const char *section, char *engine, char *queryfile, char *passin, char *inkey, char *signer, char *chain, const char *policy) argument [all...] |
/freebsd-10.2-release/crypto/heimdal/lib/roken/ |
H A D | resolve.h | 155 char *signer; member in struct:rk_sig_record 157 char sig_data[1]; /* also includes signer */
|
H A D | resolve-test.c | 137 printf ("type %u (%s), algorithm %u, labels %u, orig_ttl %u, sig_expiration %u, sig_inception %u, key_tag %u, signer %s\n", 141 sig->signer);
|
/freebsd-10.2-release/contrib/unbound/validator/ |
H A D | val_utils.h | 97 * Given a response, determine the name of the "signer". This is primarily 106 * @param signer_name: signer name, if the response is signed 283 * the answer section, NS and AR sections that are signed with same signer. 289 * @param name: the signer name to look for. 291 * @param signer: signer name or NULL if an unsigned RRset is considered. 295 size_t cname_skip, uint8_t* name, size_t len, uint8_t* signer); 347 * Find the signer name for an RRset. 349 * @param sname: signer name is returned or NULL if not signed.
|
H A D | val_neg.c | 1022 /** see if the reply has signed NSEC records and return the signer */ 1034 /* return first signer name of first NSEC */ 1053 uint8_t* signer; local 1057 /* no SOA in this message, find RRSIG over NSEC's signer name. 1059 signer = reply_nsec_signer(rep, &signer_len, &dclass); 1060 if(!signer) 1062 if(!dname_subdomain_c(signer, zone_name)) { 1063 /* the signer is not in the bailiwick, throw it out */ 1068 signer, LDNS_RR_TYPE_NS, dclass); 1071 need = calc_data_need(rep) + calc_zone_need(signer, signer_le [all...] |
H A D | val_sigcrypt.c | 838 /* RRSIG signer name has to be downcased */ 910 * @param sig: signature with signer name and label count. 1037 * from bind 9.4 signer, where it does not do so */ 1117 * signer name length. 1149 /* canonicalize signer name */ 1313 uint8_t* signer; /* rrsig signer name */ local 1321 /* min length of rdatalen, fixed rrsig, root signer, 1 byte sig */ 1342 signer = sig+2+18; 1343 signer_len = dname_valid(signer, sigle [all...] |