Lines Matching defs:certs
100 * certs (possibly including CRLs and a cert verification callback function)
101 * and non-trusted intermediate certs from the given ctx.
354 * Try all certs in given list for verifying msg, normally or in 3GPP mode.
355 * If already_checked1 == NULL then certs are assumed to be the msg->extraCerts.
358 static int check_msg_with_certs(OSSL_CMP_CTX *ctx, const STACK_OF(X509) *certs,
368 if (sk_X509_num(certs) <= 0) {
373 for (i = 0; i < sk_X509_num(certs); i++) { /* certs may be NULL */
374 X509 *cert = sk_X509_value(certs, i);
401 * at its front, then trying the trusted certs in truststore (if any) of ctx.
420 if (check_msg_with_certs(ctx, ctx->untrusted, "untrusted certs",
431 : "certs in trusted store",
469 /* enable clearing irrelevant errors in attempts to validate sender certs */
495 /* discard any diagnostic information on trying to use certs */
590 STACK_OF(X509) *certs = msg->body->value.ip->caPubs;
593 if (!ossl_cmp_X509_STORE_add1_certs(ctx->trusted, certs, 0))
594 /* adds both self-issued and not self-issued certs */
661 * and makes any certs in caPubs directly trusted.
705 /* this allows self-signed certs */
787 /* this allows self-signed certs */
805 STACK_OF(X509) *certs = msg->body->value.ip->caPubs;
808 if (!ossl_cmp_X509_STORE_add1_certs(ctx->trusted, certs, 0))
809 /* adds both self-issued and not self-issued certs */