Lines Matching defs:ctx
792 static OSSL_CMP_MSG *read_write_req_resp(OSSL_CMP_CTX *ctx,
812 && !OSSL_CMP_MSG_update_transactionID(ctx, req_new))
819 if (!OSSL_CMP_MSG_update_recipNonce(ctx, req_new))
831 res = OSSL_CMP_CTX_server_perform(ctx, actual_req);
840 res = OSSL_CMP_MSG_http_perform(ctx, actual_req);
858 if (!OSSL_CMP_CTX_set1_senderNonce(ctx, nonce)
859 || !OSSL_CMP_CTX_set1_transactionID(ctx, tid)) {
877 int (*set_fn) (OSSL_CMP_CTX *ctx, const X509_NAME *name),
878 OSSL_CMP_CTX *ctx, const char *desc)
885 if (!(*set_fn) (ctx, n)) {
895 static int set_gennames(OSSL_CMP_CTX *ctx, char *names, const char *desc)
904 (void)OSSL_CMP_CTX_set_option(ctx,
923 if (!OSSL_CMP_CTX_push1_subjectAltName(ctx, n)) {
951 typedef int (*add_X509_stack_fn_t)(void *ctx, const STACK_OF(X509) *certs);
953 static int setup_certs(char *files, const char *desc, void *ctx,
963 ok = (*set1_fn)(ctx, certs);
1022 OSSL_CMP_CTX *ctx; /* extra CMP (client) ctx partly used by server */
1028 ctx = OSSL_CMP_SRV_CTX_get0_cmp_ctx(srv_ctx);
1037 if (!OSSL_CMP_CTX_set1_referenceValue(ctx, (unsigned char *)opt_srv_ref,
1048 res = OSSL_CMP_CTX_set1_secretValue(ctx, (unsigned char *)pass_str,
1070 if (srv_cert == NULL || !OSSL_CMP_CTX_set1_cert(ctx, srv_cert)) {
1081 if (pkey == NULL || !OSSL_CMP_CTX_set1_pkey(ctx, pkey)) {
1093 if (ts == NULL || !OSSL_CMP_CTX_set0_trustedStore(ctx, ts)) {
1101 "untrusted certificates for mock server", ctx,
1155 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_UNPROTECTED_SEND, 1);
1161 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_UNPROTECTED_ERRORS, 1);
1176 static int setup_verification_ctx(OSSL_CMP_CTX *ctx)
1178 if (!setup_certs(opt_untrusted, "untrusted certificates", ctx,
1198 ok = srvcert != NULL && OSSL_CMP_CTX_set1_srvCert(ctx, srvcert);
1210 if (ts == NULL || !OSSL_CMP_CTX_set0_trustedStore(ctx, ts)) {
1218 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_IGNORE_KEYUSAGE, 1);
1221 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_UNPROTECTED_ERRORS, 1);
1235 (void)OSSL_CMP_CTX_set_certConf_cb_arg(ctx, out_trusted);
1239 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_DISABLE_CONFIRM, 1);
1242 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_IMPLICIT_CONFIRM, 1);
1252 static SSL_CTX *setup_ssl_ctx(OSSL_CMP_CTX *ctx, const char *host,
1255 STACK_OF(X509) *untrusted = OSSL_CMP_CTX_get0_untrusted(ctx);
1324 OSSL_CMP_CTX_print_errors(ctx);
1400 static int setup_protection_ctx(OSSL_CMP_CTX *ctx, ENGINE *engine)
1422 res = OSSL_CMP_CTX_set1_secretValue(ctx,
1433 && !OSSL_CMP_CTX_set1_referenceValue(ctx, (unsigned char *)opt_ref,
1441 if (pkey == NULL || !OSSL_CMP_CTX_set1_pkey(ctx, pkey)) {
1461 ok = OSSL_CMP_CTX_set1_cert(ctx, cert);
1471 ok = ok && OSSL_CMP_CTX_build_cert_chain(ctx, own_trusted, certs);
1481 if (!setup_certs(opt_extracerts, "extra certificates for CMP", ctx,
1487 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_UNPROTECTED_SEND, 1);
1496 if (!OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_DIGEST_ALGNID, digest)
1497 || !OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_OWF_ALGNID, digest)) {
1509 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_MAC_ALGNID, mac);
1519 static int setup_request_ctx(OSSL_CMP_CTX *ctx, ENGINE *engine)
1554 if (!set_name(opt_subject, OSSL_CMP_CTX_set1_subjectName, ctx, "subject")
1555 || !set_name(opt_issuer, OSSL_CMP_CTX_set1_issuer, ctx, "issuer"))
1563 if (!set_name(opt_subject, OSSL_CMP_CTX_set1_subjectName, ctx, "subject"))
1642 if (pkey == NULL || !OSSL_CMP_CTX_set0_newPkey(ctx, priv, pkey)) {
1649 && !OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_VALIDITY_DAYS,
1666 if (!OSSL_CMP_CTX_set1_p10CSR(ctx, csr))
1687 OSSL_CMP_CTX_set0_reqExtensions(ctx, exts);
1692 if (OSSL_CMP_CTX_reqExtensions_have_SAN(ctx) && opt_sans != NULL) {
1696 if (!set_gennames(ctx, opt_sans, "Subject Alternative Name"))
1702 (void)OSSL_CMP_CTX_set_option(ctx,
1709 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_POLICIES_CRITICAL, 1);
1728 if (!OSSL_CMP_CTX_push0_policy(ctx, pinfo)) {
1737 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_POPO_METHOD, opt_popo);
1753 if (!OSSL_CMP_CTX_set1_oldCert(ctx, oldcert)) {
1763 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_REVOCATION_REASON,
1776 static int handle_opt_geninfo(OSSL_CMP_CTX *ctx)
1826 if (!OSSL_CMP_CTX_push0_geninfo_ITAV(ctx, itav)) {
1845 static int setup_client_ctx(OSSL_CMP_CTX *ctx, ENGINE *engine)
1893 if (!OSSL_CMP_CTX_set1_server(ctx, host)
1894 || !OSSL_CMP_CTX_set_serverPort(ctx, portnum))
1896 if (opt_proxy != NULL && !OSSL_CMP_CTX_set1_proxy(ctx, opt_proxy))
1898 if (opt_no_proxy != NULL && !OSSL_CMP_CTX_set1_no_proxy(ctx, opt_no_proxy))
1911 if (!OSSL_CMP_CTX_set1_serverPath(ctx, used_path))
1926 if (!setup_verification_ctx(ctx))
1930 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_KEEP_ALIVE,
1939 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_MSG_TIMEOUT,
1942 (void)OSSL_CMP_CTX_set_option(ctx, OSSL_CMP_OPT_TOTAL_TIMEOUT,
1954 (void)OSSL_CMP_CTX_set_transfer_cb(ctx, read_write_req_resp);
1973 (void)OSSL_CMP_CTX_set_http_cb_arg(ctx, info);
1974 info->ssl_ctx = setup_ssl_ctx(ctx, host, engine);
1981 info->timeout = OSSL_CMP_CTX_get_option(ctx, OSSL_CMP_OPT_MSG_TIMEOUT);
1985 (void)OSSL_CMP_CTX_set_http_cb(ctx, app_http_tls_cb);
1989 if (!setup_protection_ctx(ctx, engine))
1992 if (!setup_request_ctx(ctx, engine))
1995 if (!set_name(opt_recipient, OSSL_CMP_CTX_set1_recipient, ctx, "recipient")
1997 ctx, "expected sender"))
2000 if (opt_geninfo != NULL && !handle_opt_geninfo(ctx))
2047 static int save_free_certs(OSSL_CMP_CTX *ctx,