xref: /third_party/node/src/crypto/crypto_context.cc

70     int written = BIO_write(bio.get(), bsrc.data<char>(), bsrc.size());
88   int ret = SSL_CTX_use_certificate(ctx, x.get());
110       if (issuer != nullptr || X509_check_issued(ca, x.get()) != X509_V_OK)
123       *issuer_ = SSL_CTX_get_issuer(ctx, x.get());
136     cert->reset(X509_dup(x.get()));
157       PEM_read_bio_X509_AUX(in.get(), nullptr, NoPasswordCallback, nullptr));
168   while (X509Pointer extra {PEM_read_bio_X509(in.get(),
172     if (sk_X509_push(extra_certs.get(), extra.get())) {
192                                        extra_certs.get(),
209                                               strlen(root_certs[i])).get(),
520   SSL_CTX_set_app_data(sc->ctx_.get(), sc);
526   SSL_CTX_set_options(sc->ctx_.get(), SSL_OP_NO_SSLv2);
527   SSL_CTX_set_options(sc->ctx_.get(), SSL_OP_NO_SSLv3);
529   SSL_CTX_set_options(sc->ctx_.get(), SSL_OP_ALLOW_CLIENT_RENEGOTIATION);
535   SSL_CTX_clear_mode(sc->ctx_.get(), SSL_MODE_NO_AUTO_CHAIN);
538   SSL_CTX_set_session_cache_mode(sc->ctx_.get(),
544   SSL_CTX_set_min_proto_version(sc->ctx_.get(), min_version);
545   SSL_CTX_set_max_proto_version(sc->ctx_.get(), max_version);
556   SSL_CTX_set_tlsext_ticket_key_cb(sc->ctx_.get(), TicketCompatibilityCallback);
560   return SSLPointer(SSL_new(ctx_.get()));
564   SSL_CTX_sess_set_new_cb(ctx_.get(), cb);
568   SSL_CTX_sess_set_get_cb(ctx_.get(), cb);
572   SSL_CTX_set_tlsext_servername_callback(ctx_.get(), cb);
576   SSL_CTX_set_keylog_callback(ctx_.get(), cb);
587   if (!SSL_CTX_use_PrivateKey(ctx_.get(), key->GetAsymmetricKey().get())) {
616       PEM_read_bio_PrivateKey(bio.get(),
624   if (!SSL_CTX_use_PrivateKey(sc->ctx_.get(), key.get()))
639   if (!SSL_CTX_set1_sigalgs_list(sc->ctx_.get(), *sigalgs))
662   if (!ENGINE_init(engine.get())) {
670   EVPKeyPointer key(ENGINE_load_private_key(engine.get(), *key_name,
676   if (!SSL_CTX_use_PrivateKey(sc->ctx_.get(), key.get()))
693           ctx_.get(), std::move(bio), &cert_, &issuer_) == 0) {
715   X509_STORE* cert_store = SSL_CTX_get_cert_store(ctx_.get());
717              bio.get(), nullptr, NoPasswordCallback, nullptr))) {
720       SSL_CTX_set_cert_store(ctx_.get(), cert_store);
722     CHECK_EQ(1, X509_STORE_add_cert(cert_store, x509.get()));
723     CHECK_EQ(1, SSL_CTX_add_client_CA(ctx_.get(), x509.get()));
744       PEM_read_bio_X509_CRL(bio.get(), nullptr, NoPasswordCallback, nullptr));
751   X509_STORE* cert_store = SSL_CTX_get_cert_store(ctx_.get());
754     SSL_CTX_set_cert_store(ctx_.get(), cert_store);
757   CHECK_EQ(1, X509_STORE_add_crl(cert_store, crl.get()));
782   SSL_CTX_set_cert_store(ctx_.get(), store);
803   if (!SSL_CTX_set_ciphersuites(sc->ctx_.get(), *ciphers))
818   if (!SSL_CTX_set_cipher_list(sc->ctx_.get(), *ciphers)) {
842   if (curve != "auto" && !SSL_CTX_set1_curves_list(sc->ctx_.get(), *curve)) {
859     CHECK(SSL_CTX_set_dh_auto(sc->ctx_.get(), true));
869     dh.reset(PEM_read_bio_DHparams(bio.get(), nullptr, nullptr, nullptr));
878   DH_get0_pqg(dh.get(), &p, nullptr, nullptr);
888   if (!SSL_CTX_set_tmp_dh(sc->ctx_.get(), dh.get())) {
903   CHECK(SSL_CTX_set_min_proto_version(sc->ctx_.get(), version));
915   CHECK(SSL_CTX_set_max_proto_version(sc->ctx_.get(), version));
925     SSL_CTX_get_min_proto_version(sc->ctx_.get());
936     SSL_CTX_get_max_proto_version(sc->ctx_.get());
950   SSL_CTX_set_options(sc->ctx_.get(),
968   if (SSL_CTX_set_session_id_context(sc->ctx_.get(), sid_ctx, sid_ctx_len) == 1)
979     ERR_print_errors(bio.get());
980     BIO_get_mem_ptr(bio.get(), &mem);
995   SSL_CTX_set_timeout(sc->ctx_.get(), sessionTimeout);
1038   X509_STORE* cert_store = SSL_CTX_get_cert_store(sc->ctx_.get());
1049   if (d2i_PKCS12_bio(in.get(), &p12_ptr) &&
1051       PKCS12_parse(p12.get(), pass.data(),
1057       SSL_CTX_use_certificate_chain(sc->ctx_.get(),
1059                                     extra_certs.get(),
1062       SSL_CTX_use_PrivateKey(sc->ctx_.get(), pkey.get())) {
1064     for (int i = 0; i < sk_X509_num(extra_certs.get()); i++) {
1065       X509* ca = sk_X509_value(extra_certs.get(), i);
1069         SSL_CTX_set_cert_store(sc->ctx_.get(), cert_store);
1072       SSL_CTX_add_client_CA(sc->ctx_.get(), ca);
1117   if (!SSL_CTX_set_client_cert_engine(sc->ctx_.get(), engine.get()))
1162   SSL_CTX_set_tlsext_ticket_key_cb(wrap->ctx_.get(), TicketKeyCallback);
1307   Local<External> ext = External::New(info.GetIsolate(), sc->ctx_.get());
1319     cert = wrap->cert_.get();
1321     cert = wrap->issuer_.get();
1348              bio.get(), nullptr, NoPasswordCallback, nullptr))) {
1349     X509_STORE_add_cert(store, x509.get());

Indexes created Thu Nov 07 10:32:03 CST 2024