Lines Matching full:certificates
290 * certificates. We now need to add at least one trusted one,
518 -1: we accept both CA and non-CA certificates, to allow direct
519 use of self-signed certificates (which are marked as CA).
520 0: we only accept non-CA certificates. This is currently not
522 1: we only accept CA certificates. This is currently used for
523 all certificates in the chain except the leaf certificate.
544 /* Check all untrusted certificates */
665 /* Check name constraints for all certificates */
672 /* Check against constraints for all certificates higher in
751 /* Check all trusted certificates in chain */
1226 * set of untrusted certificates.
1643 /* Locate certificates with bad extensions and notify
1768 /* Skip signature check for self signed certificates unless
2338 /* Set alternative lookup method: just a STACK of trusted certificates.
