Home | History | Annotate | Download | only in x509

Lines Matching full:certificate

83 /* certificate is within CRL scope */
91 /* Issuer name matches certificate */
99 /* CRL issuer is certificate issuer */
103 /* CRL issuer is on certificate path */
149 /* Return 1 is a certificate is self signed */
159 /* Given a certificate try and find an exact match in the store */
322          * Examine last certificate in chain and see if it is self signed.
327             /* we have a self signed certificate */
330                  * We have a single self signed certificate: see if we can
347                      * We have a match: replace certificate with store
357                  * extract and save self signed certificate for later use
366         /* We now lookup certs from the certificate store */
442      * self signed certificate in which case we've indicated an error already
546 /* Given a possible certificate and issuer check them */
577  * Check a certificate chains extensions for consistency with the supplied
597      * for all certificates in the chain except the leaf certificate.
694          * If this certificate is a proxy certificate, the next certificate
695          * must be another proxy certificate or a EE certificate.  If not,
696          * the next certificate must be a CA certificate.
832      * If we accept partial chains and have at least one trusted certificate
864         /* If checking CRL paths this isn't the EE certificate */
1158  * For a given CRL return how suitable it is for the supplied certificate
1160  * the certificate issuer this is returned in *pissuer. The reasons mask is
1189     /* If issuer name doesn't match certificate need indirect CRL */
1203     /* Check authority key ID and locate certificate issuer */
1206     /* If we can't locate certificate issuer at this point forget it */
1292  * Check the path of a CRL issuer certificate. This creates a new
1331  * certificate path, which could lead to situations where a certificate could
1464  * Retrieve CRL corresponding to current certificate. If deltas enabled try
1525      * Else find CRL issuer: if not last certificate then issuer is next
1526      * certificate in chain.
1586         /* Attempt to get issuer certificate public key */
1620 /* Check certificate against CRL */
1627      * critical extensions it could still be used to indicate a certificate
1639      * Look for serial number of certificate in CRL If found make sure reason