#include <openssl/ssl.h>
#include <assert.h>
#include <openssl/asn1.h>
#include <openssl/bytestring.h>
#include <openssl/err.h>
#include <openssl/pem.h>
#include <openssl/stack.h>
#include <openssl/x509.h>
#include <openssl/x509v3.h>
#include "internal.h"
#include "../crypto/internal.h"

Include dependency graph for ssl_x509.cc:

Functions
static int	add_client_CA (UniquePtr< STACK_OF(CRYPTO_BUFFER)> names, X509 x509, CRYPTO_BUFFER_POOL *pool)

static void	check_ssl_ctx_x509_method (const SSL_CTX *ctx)

static BSSL_NAMESPACE_BEGIN void	check_ssl_x509_method (const SSL *ssl)

SSL_SESSION *	d2i_SSL_SESSION_bio (BIO bio, SSL_SESSION *out)

static int	do_client_cert_cb (SSL ssl, void arg)

int	i2d_SSL_SESSION_bio (BIO bio, const SSL_SESSION session)

	if (!ret)

	if (a)

	IMPLEMENT_PEM_rw (SSL_SESSION, SSL_SESSION, PEM_STRING_SSL_SESSION, SSL_SESSION) SSL_SESSION d2i_SSL_SESSION(SSL_SESSION *a

static UniquePtr< STACK_OF(CRYPTO_BUFFER)>	new_leafless_chain (void)

return ret	release ()

static int	set_cert_store (X509_STORE *store_ptr, X509_STORE new_store, int take_ref)

static void	set_client_CA_list (UniquePtr< STACK_OF(CRYPTO_BUFFER)> ca_list, const STACK_OF(X509_NAME) name_list, CRYPTO_BUFFER_POOL *pool)

int	SSL_add0_chain_cert (SSL ssl, X509 x509)

int	SSL_add1_chain_cert (SSL ssl, X509 x509)

int	SSL_add_client_CA (SSL ssl, X509 x509)

int	SSL_alert_from_verify_result (long result)

static int	ssl_cert_add0_chain_cert (CERT cert, X509 x509)

static int	ssl_cert_add1_chain_cert (CERT cert, X509 x509)

static int	ssl_cert_append_cert (CERT cert, X509 x509)

static int	ssl_cert_cache_chain_certs (CERT *cert)

static int	ssl_cert_cache_leaf_cert (CERT *cert)

static X509 *	ssl_cert_get0_leaf (CERT *cert)

static int	ssl_cert_set0_chain (CERT cert, STACK_OF(X509) chain)

static int	ssl_cert_set1_chain (CERT cert, STACK_OF(X509) chain)

static bool	ssl_cert_set_chain (CERT cert, STACK_OF(X509) chain)

int	SSL_clear_chain_certs (SSL *ssl)

static void	ssl_crypto_x509_cert_clear (CERT *cert)

static void	ssl_crypto_x509_cert_dup (CERT new_cert, const CERT cert)

static void	ssl_crypto_x509_cert_flush_cached_chain (CERT *cert)

static void	ssl_crypto_x509_cert_flush_cached_leaf (CERT *cert)

static void	ssl_crypto_x509_cert_free (CERT *cert)

static bool	ssl_crypto_x509_check_client_CA_list (STACK_OF(CRYPTO_BUFFER) *names)

static void	ssl_crypto_x509_hs_flush_cached_ca_names (SSL_HANDSHAKE *hs)

static bool	ssl_crypto_x509_session_cache_objects (SSL_SESSION *sess)

static void	ssl_crypto_x509_session_clear (SSL_SESSION *session)

static bool	ssl_crypto_x509_session_dup (SSL_SESSION new_session, const SSL_SESSION session)

static bool	ssl_crypto_x509_session_verify_cert_chain (SSL_SESSION session, SSL_HANDSHAKE hs, uint8_t *out_alert)

static bool	ssl_crypto_x509_ssl_auto_chain_if_needed (SSL_HANDSHAKE *hs)

static void	ssl_crypto_x509_ssl_config_free (SSL_CONFIG *cfg)

static void	ssl_crypto_x509_ssl_ctx_flush_cached_client_CA (SSL_CTX *ctx)

static void	ssl_crypto_x509_ssl_ctx_free (SSL_CTX *ctx)

static bool	ssl_crypto_x509_ssl_ctx_new (SSL_CTX *ctx)

static void	ssl_crypto_x509_ssl_flush_cached_client_CA (SSL_CONFIG *cfg)

static bool	ssl_crypto_x509_ssl_new (SSL_HANDSHAKE *hs)

int	SSL_CTX_add0_chain_cert (SSL_CTX ctx, X509 x509)

int	SSL_CTX_add1_chain_cert (SSL_CTX ctx, X509 x509)

int	SSL_CTX_add_client_CA (SSL_CTX ctx, X509 x509)

int	SSL_CTX_add_extra_chain_cert (SSL_CTX ctx, X509 x509)

int	SSL_CTX_clear_chain_certs (SSL_CTX *ctx)

int	SSL_CTX_clear_extra_chain_certs (SSL_CTX *ctx)

X509 *	SSL_CTX_get0_certificate (const SSL_CTX *ctx)

int	SSL_CTX_get0_chain_certs (const SSL_CTX ctx, STACK_OF(X509) *out_chain)

X509_VERIFY_PARAM *	SSL_CTX_get0_param (SSL_CTX *ctx)

X509_STORE *	SSL_CTX_get_cert_store (const SSL_CTX *ctx)

int	SSL_CTX_get_extra_chain_certs (const SSL_CTX ctx, STACK_OF(X509) *out_chain)

int	SSL_CTX_get_verify_depth (const SSL_CTX *ctx)

int	SSL_CTX_get_verify_mode (const SSL_CTX *ctx)

int	SSL_CTX_load_verify_locations (SSL_CTX ctx, const char ca_file, const char *ca_dir)

int	SSL_CTX_set0_chain (SSL_CTX ctx, STACK_OF(X509) chain)

int	SSL_CTX_set0_verify_cert_store (SSL_CTX ctx, X509_STORE store)

int	SSL_CTX_set1_chain (SSL_CTX ctx, STACK_OF(X509) chain)

int	SSL_CTX_set1_param (SSL_CTX ctx, const X509_VERIFY_PARAM param)

int	SSL_CTX_set1_verify_cert_store (SSL_CTX ctx, X509_STORE store)

void	SSL_CTX_set_cert_store (SSL_CTX ctx, X509_STORE store)

void	SSL_CTX_set_cert_verify_callback (SSL_CTX ctx, int(cb)(X509_STORE_CTX store_ctx, void arg), void *arg)

void	SSL_CTX_set_client_CA_list (SSL_CTX ctx, STACK_OF(X509_NAME) name_list)

void	SSL_CTX_set_client_cert_cb (SSL_CTX ctx, int(cb)(SSL ssl, X509 out_x509, EVP_PKEY *out_pkey))

int	SSL_CTX_set_default_verify_paths (SSL_CTX *ctx)

int	SSL_CTX_set_purpose (SSL_CTX *ctx, int purpose)

int	SSL_CTX_set_trust (SSL_CTX *ctx, int trust)

void	SSL_CTX_set_verify (SSL_CTX ctx, int mode, int(cb)(int, X509_STORE_CTX *))

void	SSL_CTX_set_verify_depth (SSL_CTX *ctx, int depth)

int	SSL_CTX_use_certificate (SSL_CTX ctx, X509 x)

int	SSL_get0_chain_certs (const SSL ssl, STACK_OF(X509) *out_chain)

X509_VERIFY_PARAM *	SSL_get0_param (SSL *ssl)

X509 *	SSL_get_certificate (const SSL *ssl)

int	SSL_get_ex_data_X509_STORE_CTX_idx (void)

X509 *	SSL_get_peer_certificate (const SSL *ssl)

int	SSL_get_verify_depth (const SSL *ssl)

long	SSL_get_verify_result (const SSL *ssl)

int	SSL_set0_chain (SSL ssl, STACK_OF(X509) chain)

int	SSL_set0_verify_cert_store (SSL ssl, X509_STORE store)

int	SSL_set1_chain (SSL ssl, STACK_OF(X509) chain)

int	SSL_set1_param (SSL ssl, const X509_VERIFY_PARAM param)

int	SSL_set1_verify_cert_store (SSL ssl, X509_STORE store)

void	SSL_set_client_CA_list (SSL ssl, STACK_OF(X509_NAME) name_list)

int	SSL_set_purpose (SSL *ssl, int purpose)

int	SSL_set_trust (SSL *ssl, int trust)

void	SSL_set_verify (SSL ssl, int mode, int(callback)(int ok, X509_STORE_CTX *store_ctx))

void	SSL_set_verify_depth (SSL *ssl, int depth)

static int	ssl_use_certificate (CERT cert, X509 x)

int	SSL_use_certificate (SSL ssl, X509 x)

	STACK_OF (X509) SSL_get_peer_cert_chain(const SSL ssl)

	STACK_OF (X509_NAME) SSL_dup_CA_list(STACK_OF(X509_NAME) list)

static UniquePtr< CRYPTO_BUFFER >	x509_to_buffer (X509 *x509)

Variables
CBS_init &	cbs

const uint8_t long	length

const uint8_t **	pp = CBS_data(&cbs)

UniquePtr< SSL_SESSION >	ret

const SSL_X509_METHOD	ssl_crypto_x509_method

int()(int ok, X509_STORE_CTX store_ctx)	SSL_CTX_get_verify_callback (const SSL_CTX *ctx)

int()(int, X509_STORE_CTX )	SSL_get_verify_callback (const SSL *ssl)

Function Documentation

◆ add_client_CA()

static int add_client_CA	(	UniquePtr< STACK_OF(CRYPTO_BUFFER)> *	names,
		X509 *	x509,
		CRYPTO_BUFFER_POOL *	pool
	)

static

Definition at line 1160 of file ssl_x509.cc.

◆ check_ssl_ctx_x509_method()

static void check_ssl_ctx_x509_method ( const SSL_CTX * ctx )

static

Definition at line 168 of file ssl_x509.cc.

◆ check_ssl_x509_method()

static BSSL_NAMESPACE_BEGIN void check_ssl_x509_method ( const SSL * ssl )

static

Definition at line 162 of file ssl_x509.cc.

◆ d2i_SSL_SESSION_bio()

SSL_SESSION* d2i_SSL_SESSION_bio	(	BIO *	bio,
		SSL_SESSION **	out
	)

Definition at line 997 of file ssl_x509.cc.

◆ do_client_cert_cb()

static int do_client_cert_cb	(	SSL *	ssl,
		void *	arg
	)

static

Definition at line 1221 of file ssl_x509.cc.

◆ i2d_SSL_SESSION_bio()

int i2d_SSL_SESSION_bio	(	BIO *	bio,
		const SSL_SESSION *	session
	)

Definition at line 1008 of file ssl_x509.cc.

◆ if() [1/2]

if ( ! ret )

Definition at line 1031 of file ssl_x509.cc.

◆ if() [2/2]

if ( a )

Definition at line 1035 of file ssl_x509.cc.

◆ IMPLEMENT_PEM_rw()

IMPLEMENT_PEM_rw	(	SSL_SESSION	,
		SSL_SESSION	,
		PEM_STRING_SSL_SESSION	,
		SSL_SESSION
	)

◆ new_leafless_chain()

static UniquePtr<STACK_OF(CRYPTO_BUFFER)> new_leafless_chain ( void )

static

Definition at line 188 of file ssl_x509.cc.

◆ release()

return ret release ( )

Definition at line 37 of file doc/python/sphinx/conf.py.

◆ set_cert_store()

static int set_cert_store	(	X509_STORE **	store_ptr,
		X509_STORE *	new_store,
		int	take_ref
	)

static

Definition at line 1261 of file ssl_x509.cc.

◆ set_client_CA_list()

static void set_client_CA_list	(	UniquePtr< STACK_OF(CRYPTO_BUFFER)> *	ca_list,
		const STACK_OF(X509_NAME) *	name_list,
		CRYPTO_BUFFER_POOL *	pool
	)

static

Definition at line 1047 of file ssl_x509.cc.

◆ SSL_add0_chain_cert()

int SSL_add0_chain_cert	(	SSL *	ssl,
		X509 *	x509
	)

Definition at line 905 of file ssl_x509.cc.

◆ SSL_add1_chain_cert()

int SSL_add1_chain_cert	(	SSL *	ssl,
		X509 *	x509
	)

Definition at line 913 of file ssl_x509.cc.

◆ SSL_add_client_CA()

int SSL_add_client_CA	(	SSL *	ssl,
		X509 *	x509
	)

Definition at line 1198 of file ssl_x509.cc.

◆ SSL_alert_from_verify_result()

int SSL_alert_from_verify_result ( long result )

Definition at line 1307 of file ssl_x509.cc.

◆ ssl_cert_add0_chain_cert()

static int ssl_cert_add0_chain_cert	(	CERT *	cert,
		X509 *	x509
	)

static

Definition at line 844 of file ssl_x509.cc.

◆ ssl_cert_add1_chain_cert()

static int ssl_cert_add1_chain_cert	(	CERT *	cert,
		X509 *	x509
	)

static

Definition at line 855 of file ssl_x509.cc.

◆ ssl_cert_append_cert()

static int ssl_cert_append_cert	(	CERT *	cert,
		X509 *	x509
	)

static

Definition at line 822 of file ssl_x509.cc.

◆ ssl_cert_cache_chain_certs()

static int ssl_cert_cache_chain_certs ( CERT * cert )

static

Definition at line 938 of file ssl_x509.cc.

◆ ssl_cert_cache_leaf_cert()

static int ssl_cert_cache_leaf_cert ( CERT * cert )

static

Definition at line 762 of file ssl_x509.cc.

◆ ssl_cert_get0_leaf()

static X509* ssl_cert_get0_leaf ( CERT * cert )

static

Definition at line 779 of file ssl_x509.cc.

◆ ssl_cert_set0_chain()

static int ssl_cert_set0_chain	(	CERT *	cert,
		STACK_OF(X509) *	chain
	)

static

Definition at line 803 of file ssl_x509.cc.

◆ ssl_cert_set1_chain()

static int ssl_cert_set1_chain	(	CERT *	cert,
		STACK_OF(X509) *	chain
	)

static

Definition at line 813 of file ssl_x509.cc.

◆ ssl_cert_set_chain()

static bool ssl_cert_set_chain	(	CERT *	cert,
		STACK_OF(X509) *	chain
	)

static

Definition at line 202 of file ssl_x509.cc.

◆ SSL_clear_chain_certs()

int SSL_clear_chain_certs ( SSL * ssl )

Definition at line 931 of file ssl_x509.cc.

◆ ssl_crypto_x509_cert_clear()

static void ssl_crypto_x509_cert_clear ( CERT * cert )

static

Definition at line 262 of file ssl_x509.cc.

◆ ssl_crypto_x509_cert_dup()

static void ssl_crypto_x509_cert_dup	(	CERT *	new_cert,
		const CERT *	cert
	)

static

Definition at line 275 of file ssl_x509.cc.

◆ ssl_crypto_x509_cert_flush_cached_chain()

static void ssl_crypto_x509_cert_flush_cached_chain ( CERT * cert )

static

Definition at line 242 of file ssl_x509.cc.

◆ ssl_crypto_x509_cert_flush_cached_leaf()

static void ssl_crypto_x509_cert_flush_cached_leaf ( CERT * cert )

static

Definition at line 237 of file ssl_x509.cc.

◆ ssl_crypto_x509_cert_free()

static void ssl_crypto_x509_cert_free ( CERT * cert )

static

Definition at line 270 of file ssl_x509.cc.

◆ ssl_crypto_x509_check_client_CA_list()

static bool ssl_crypto_x509_check_client_CA_list ( STACK_OF(CRYPTO_BUFFER) * names )

static

Definition at line 247 of file ssl_x509.cc.

◆ ssl_crypto_x509_hs_flush_cached_ca_names()

static void ssl_crypto_x509_hs_flush_cached_ca_names ( SSL_HANDSHAKE * hs )

static

Definition at line 426 of file ssl_x509.cc.

◆ ssl_crypto_x509_session_cache_objects()

static bool ssl_crypto_x509_session_cache_objects ( SSL_SESSION * sess )

static

Definition at line 282 of file ssl_x509.cc.

◆ ssl_crypto_x509_session_clear()

static void ssl_crypto_x509_session_clear ( SSL_SESSION * session )

static

Definition at line 352 of file ssl_x509.cc.

◆ ssl_crypto_x509_session_dup()

static bool ssl_crypto_x509_session_dup	(	SSL_SESSION *	new_session,
		const SSL_SESSION *	session
	)

static

Definition at line 332 of file ssl_x509.cc.

◆ ssl_crypto_x509_session_verify_cert_chain()

static bool ssl_crypto_x509_session_verify_cert_chain	(	SSL_SESSION *	session,
		SSL_HANDSHAKE *	hs,
		uint8_t *	out_alert
	)

static

Definition at line 361 of file ssl_x509.cc.

◆ ssl_crypto_x509_ssl_auto_chain_if_needed()

static bool ssl_crypto_x509_ssl_auto_chain_if_needed ( SSL_HANDSHAKE * hs )

static

Definition at line 451 of file ssl_x509.cc.

◆ ssl_crypto_x509_ssl_config_free()

static void ssl_crypto_x509_ssl_config_free ( SSL_CONFIG * cfg )

static

Definition at line 445 of file ssl_x509.cc.

◆ ssl_crypto_x509_ssl_ctx_flush_cached_client_CA()

static void ssl_crypto_x509_ssl_ctx_flush_cached_client_CA ( SSL_CTX * ctx )

static

Definition at line 494 of file ssl_x509.cc.

◆ ssl_crypto_x509_ssl_ctx_free()

static void ssl_crypto_x509_ssl_ctx_free ( SSL_CTX * ctx )

static

Definition at line 505 of file ssl_x509.cc.

◆ ssl_crypto_x509_ssl_ctx_new()

static bool ssl_crypto_x509_ssl_ctx_new ( SSL_CTX * ctx )

static

Definition at line 499 of file ssl_x509.cc.

◆ ssl_crypto_x509_ssl_flush_cached_client_CA()

static void ssl_crypto_x509_ssl_flush_cached_client_CA ( SSL_CONFIG * cfg )

static

Definition at line 440 of file ssl_x509.cc.

◆ ssl_crypto_x509_ssl_new()

static bool ssl_crypto_x509_ssl_new ( SSL_HANDSHAKE * hs )

static

Definition at line 431 of file ssl_x509.cc.

◆ SSL_CTX_add0_chain_cert()

int SSL_CTX_add0_chain_cert	(	SSL_CTX *	ctx,
		X509 *	x509
	)

Definition at line 890 of file ssl_x509.cc.

◆ SSL_CTX_add1_chain_cert()

int SSL_CTX_add1_chain_cert	(	SSL_CTX *	ctx,
		X509 *	x509
	)

Definition at line 895 of file ssl_x509.cc.

◆ SSL_CTX_add_client_CA()

int SSL_CTX_add_client_CA	(	SSL_CTX *	ctx,
		X509 *	x509
	)

Definition at line 1211 of file ssl_x509.cc.

◆ SSL_CTX_add_extra_chain_cert()

int SSL_CTX_add_extra_chain_cert	(	SSL_CTX *	ctx,
		X509 *	x509
	)

Definition at line 900 of file ssl_x509.cc.

◆ SSL_CTX_clear_chain_certs()

int SSL_CTX_clear_chain_certs ( SSL_CTX * ctx )

Definition at line 921 of file ssl_x509.cc.

◆ SSL_CTX_clear_extra_chain_certs()

int SSL_CTX_clear_extra_chain_certs ( SSL_CTX * ctx )

Definition at line 926 of file ssl_x509.cc.

◆ SSL_CTX_get0_certificate()

X509* SSL_CTX_get0_certificate ( const SSL_CTX * ctx )

Definition at line 797 of file ssl_x509.cc.

◆ SSL_CTX_get0_chain_certs()

int SSL_CTX_get0_chain_certs	(	const SSL_CTX *	ctx,
		STACK_OF(X509) **	out_chain
	)

Definition at line 965 of file ssl_x509.cc.

◆ SSL_CTX_get0_param()

X509_VERIFY_PARAM* SSL_CTX_get0_param ( SSL_CTX * ctx )

Definition at line 613 of file ssl_x509.cc.

◆ SSL_CTX_get_cert_store()

X509_STORE* SSL_CTX_get_cert_store ( const SSL_CTX * ctx )

Definition at line 722 of file ssl_x509.cc.

◆ SSL_CTX_get_extra_chain_certs()

int SSL_CTX_get_extra_chain_certs	(	const SSL_CTX *	ctx,
		STACK_OF(X509) **	out_chain
	)

Definition at line 977 of file ssl_x509.cc.

◆ SSL_CTX_get_verify_depth()

int SSL_CTX_get_verify_depth ( const SSL_CTX * ctx )

Definition at line 650 of file ssl_x509.cc.

◆ SSL_CTX_get_verify_mode()

int SSL_CTX_get_verify_mode ( const SSL_CTX * ctx )

Definition at line 645 of file ssl_x509.cc.

◆ SSL_CTX_load_verify_locations()

int SSL_CTX_load_verify_locations	(	SSL_CTX *	ctx,
		const char *	ca_file,
		const char *	ca_dir
	)

Definition at line 707 of file ssl_x509.cc.

◆ SSL_CTX_set0_chain()

int SSL_CTX_set0_chain	(	SSL_CTX *	ctx,
		STACK_OF(X509) *	chain
	)

Definition at line 864 of file ssl_x509.cc.

◆ SSL_CTX_set0_verify_cert_store()

int SSL_CTX_set0_verify_cert_store	(	SSL_CTX *	ctx,
		X509_STORE *	store
	)

Definition at line 1281 of file ssl_x509.cc.

◆ SSL_CTX_set1_chain()

int SSL_CTX_set1_chain	(	SSL_CTX *	ctx,
		STACK_OF(X509) *	chain
	)

Definition at line 869 of file ssl_x509.cc.

◆ SSL_CTX_set1_param()

int SSL_CTX_set1_param	(	SSL_CTX *	ctx,
		const X509_VERIFY_PARAM *	param
	)

Definition at line 600 of file ssl_x509.cc.

◆ SSL_CTX_set1_verify_cert_store()

int SSL_CTX_set1_verify_cert_store	(	SSL_CTX *	ctx,
		X509_STORE *	store
	)

Definition at line 1286 of file ssl_x509.cc.

◆ SSL_CTX_set_cert_store()

void SSL_CTX_set_cert_store	(	SSL_CTX *	ctx,
		X509_STORE *	store
	)

Definition at line 727 of file ssl_x509.cc.

◆ SSL_CTX_set_cert_verify_callback()

void SSL_CTX_set_cert_verify_callback	(	SSL_CTX *	ctx,
		int()(X509_STORE_CTX store_ctx, void *arg)	cb,
		void *	arg
	)

Definition at line 681 of file ssl_x509.cc.

◆ SSL_CTX_set_client_CA_list()

void SSL_CTX_set_client_CA_list	(	SSL_CTX *	ctx,
		STACK_OF(X509_NAME) *	name_list
	)

Definition at line 1083 of file ssl_x509.cc.

◆ SSL_CTX_set_client_cert_cb()

void SSL_CTX_set_client_cert_cb	(	SSL_CTX *	ctx,
		int()(SSL ssl, X509 out_x509, EVP_PKEY out_pkey)	cb
	)

Definition at line 1252 of file ssl_x509.cc.

◆ SSL_CTX_set_default_verify_paths()

int SSL_CTX_set_default_verify_paths ( SSL_CTX * ctx )

Definition at line 702 of file ssl_x509.cc.

◆ SSL_CTX_set_purpose()

int SSL_CTX_set_purpose	(	SSL_CTX *	ctx,
		int	purpose
	)

Definition at line 574 of file ssl_x509.cc.

◆ SSL_CTX_set_trust()

int SSL_CTX_set_trust	(	SSL_CTX *	ctx,
		int	trust
	)

Definition at line 587 of file ssl_x509.cc.

◆ SSL_CTX_set_verify()

void SSL_CTX_set_verify	(	SSL_CTX *	ctx,
		int	mode,
		int()(int, X509_STORE_CTX )	cb
	)

Definition at line 690 of file ssl_x509.cc.

◆ SSL_CTX_set_verify_depth()

void SSL_CTX_set_verify_depth	(	SSL_CTX *	ctx,
		int	depth
	)

Definition at line 697 of file ssl_x509.cc.

◆ SSL_CTX_use_certificate()

int SSL_CTX_use_certificate	(	SSL_CTX *	ctx,
		X509 *	x
	)

Definition at line 755 of file ssl_x509.cc.

◆ SSL_get0_chain_certs()

int SSL_get0_chain_certs	(	const SSL *	ssl,
		STACK_OF(X509) **	out_chain
	)

Definition at line 982 of file ssl_x509.cc.

◆ SSL_get0_param()

X509_VERIFY_PARAM* SSL_get0_param ( SSL * ssl )

Definition at line 618 of file ssl_x509.cc.

◆ SSL_get_certificate()

X509* SSL_get_certificate ( const SSL * ssl )

Definition at line 788 of file ssl_x509.cc.

◆ SSL_get_ex_data_X509_STORE_CTX_idx()

int SSL_get_ex_data_X509_STORE_CTX_idx ( void )

Definition at line 1273 of file ssl_x509.cc.

◆ SSL_get_peer_certificate()

X509* SSL_get_peer_certificate ( const SSL * ssl )

Definition at line 536 of file ssl_x509.cc.

◆ SSL_get_verify_depth()

int SSL_get_verify_depth ( const SSL * ssl )

Definition at line 627 of file ssl_x509.cc.

◆ SSL_get_verify_result()

long SSL_get_verify_result ( const SSL * ssl )

Definition at line 713 of file ssl_x509.cc.

◆ SSL_set0_chain()

int SSL_set0_chain	(	SSL *	ssl,
		STACK_OF(X509) *	chain
	)

Definition at line 874 of file ssl_x509.cc.

◆ SSL_set0_verify_cert_store()

int SSL_set0_verify_cert_store	(	SSL *	ssl,
		X509_STORE *	store
	)

Definition at line 1291 of file ssl_x509.cc.

◆ SSL_set1_chain()

int SSL_set1_chain	(	SSL *	ssl,
		STACK_OF(X509) *	chain
	)

Definition at line 882 of file ssl_x509.cc.

◆ SSL_set1_param()

int SSL_set1_param	(	SSL *	ssl,
		const X509_VERIFY_PARAM *	param
	)

Definition at line 605 of file ssl_x509.cc.

◆ SSL_set1_verify_cert_store()

int SSL_set1_verify_cert_store	(	SSL *	ssl,
		X509_STORE *	store
	)

Definition at line 1299 of file ssl_x509.cc.

◆ SSL_set_client_CA_list()

void SSL_set_client_CA_list	(	SSL *	ssl,
		STACK_OF(X509_NAME) *	name_list
	)

Definition at line 1073 of file ssl_x509.cc.

◆ SSL_set_purpose()

int SSL_set_purpose	(	SSL *	ssl,
		int	purpose
	)

Definition at line 579 of file ssl_x509.cc.

◆ SSL_set_trust()

int SSL_set_trust	(	SSL *	ssl,
		int	trust
	)

Definition at line 592 of file ssl_x509.cc.

◆ SSL_set_verify()

void SSL_set_verify	(	SSL *	ssl,
		int	mode,
		int()(int ok, X509_STORE_CTX store_ctx)	callback
	)

Definition at line 661 of file ssl_x509.cc.

◆ SSL_set_verify_depth()

void SSL_set_verify_depth	(	SSL *	ssl,
		int	depth
	)

Definition at line 673 of file ssl_x509.cc.

◆ ssl_use_certificate()

static int ssl_use_certificate	(	CERT *	cert,
		X509 *	x
	)

static

Definition at line 733 of file ssl_x509.cc.

◆ SSL_use_certificate()

int SSL_use_certificate	(	SSL *	ssl,
		X509 *	x
	)

Definition at line 747 of file ssl_x509.cc.

◆ STACK_OF() [1/2]

STACK_OF ( X509 ) const

Definition at line 549 of file ssl_x509.cc.

◆ STACK_OF() [2/2]

STACK_OF ( X509_NAME )

Definition at line 1043 of file ssl_x509.cc.

◆ x509_to_buffer()

static UniquePtr<CRYPTO_BUFFER> x509_to_buffer ( X509 * x509 )

static

Definition at line 174 of file ssl_x509.cc.

Variable Documentation

◆ cbs

CBS_init& cbs

Definition at line 1027 of file ssl_x509.cc.

◆ length

const uint8_t long length

Initial value:

{
  if (length < 0) {
    OPENSSL_PUT_ERROR(SSL, ERR_R_INTERNAL_ERROR);
    return NULL;
  }
 
  CBS cbs

Definition at line 1020 of file ssl_x509.cc.

◆ pp

* pp = CBS_data(&cbs)

Definition at line 1020 of file ssl_x509.cc.

◆ ret

UniquePtr<SSL_SESSION> ret

Initial value:

= SSL_SESSION_parse(&cbs, &ssl_crypto_x509_method,

NULL )

Definition at line 1029 of file ssl_x509.cc.

◆ ssl_crypto_x509_method

◆ SSL_CTX_get_verify_callback

int(*)( int ok, X509_STORE_CTX *store_ctx) SSL_CTX_get_verify_callback(const SSL_CTX *ctx)

Definition at line 655 of file ssl_x509.cc.

◆ SSL_get_verify_callback

int(*)(int, X509_STORE_CTX *) SSL_get_verify_callback(const SSL *ssl)

Definition at line 636 of file ssl_x509.cc.

Functions

Variables

Function Documentation

◆ add_client_CA()

◆ check_ssl_ctx_x509_method()

◆ check_ssl_x509_method()

◆ d2i_SSL_SESSION_bio()

◆ do_client_cert_cb()

◆ i2d_SSL_SESSION_bio()

◆ if() [1/2]

◆ if() [2/2]

◆ IMPLEMENT_PEM_rw()

◆ new_leafless_chain()

◆ release()

◆ set_cert_store()

◆ set_client_CA_list()

◆ SSL_add0_chain_cert()

◆ SSL_add1_chain_cert()

◆ SSL_add_client_CA()

◆ SSL_alert_from_verify_result()

◆ ssl_cert_add0_chain_cert()

◆ ssl_cert_add1_chain_cert()

◆ ssl_cert_append_cert()

◆ ssl_cert_cache_chain_certs()

◆ ssl_cert_cache_leaf_cert()

◆ ssl_cert_get0_leaf()

◆ ssl_cert_set0_chain()

◆ ssl_cert_set1_chain()

◆ ssl_cert_set_chain()

◆ SSL_clear_chain_certs()

◆ ssl_crypto_x509_cert_clear()

◆ ssl_crypto_x509_cert_dup()

◆ ssl_crypto_x509_cert_flush_cached_chain()

◆ ssl_crypto_x509_cert_flush_cached_leaf()

◆ ssl_crypto_x509_cert_free()

◆ ssl_crypto_x509_check_client_CA_list()

◆ ssl_crypto_x509_hs_flush_cached_ca_names()

◆ ssl_crypto_x509_session_cache_objects()

◆ ssl_crypto_x509_session_clear()

◆ ssl_crypto_x509_session_dup()

◆ ssl_crypto_x509_session_verify_cert_chain()

◆ ssl_crypto_x509_ssl_auto_chain_if_needed()

◆ ssl_crypto_x509_ssl_config_free()

◆ ssl_crypto_x509_ssl_ctx_flush_cached_client_CA()

◆ ssl_crypto_x509_ssl_ctx_free()

◆ ssl_crypto_x509_ssl_ctx_new()

◆ ssl_crypto_x509_ssl_flush_cached_client_CA()

◆ ssl_crypto_x509_ssl_new()

◆ SSL_CTX_add0_chain_cert()

◆ SSL_CTX_add1_chain_cert()

◆ SSL_CTX_add_client_CA()

◆ SSL_CTX_add_extra_chain_cert()

◆ SSL_CTX_clear_chain_certs()

◆ SSL_CTX_clear_extra_chain_certs()

◆ SSL_CTX_get0_certificate()

◆ SSL_CTX_get0_chain_certs()

◆ SSL_CTX_get0_param()

◆ SSL_CTX_get_cert_store()

◆ SSL_CTX_get_extra_chain_certs()

◆ SSL_CTX_get_verify_depth()

◆ SSL_CTX_get_verify_mode()

◆ SSL_CTX_load_verify_locations()

◆ SSL_CTX_set0_chain()

◆ SSL_CTX_set0_verify_cert_store()

◆ SSL_CTX_set1_chain()

◆ SSL_CTX_set1_param()

◆ SSL_CTX_set1_verify_cert_store()

◆ SSL_CTX_set_cert_store()

◆ SSL_CTX_set_cert_verify_callback()

◆ SSL_CTX_set_client_CA_list()

◆ SSL_CTX_set_client_cert_cb()

◆ SSL_CTX_set_default_verify_paths()

◆ SSL_CTX_set_purpose()

◆ SSL_CTX_set_trust()

◆ SSL_CTX_set_verify()

◆ SSL_CTX_set_verify_depth()

◆ SSL_CTX_use_certificate()

◆ SSL_get0_chain_certs()

◆ SSL_get0_param()

◆ SSL_get_certificate()