Lines Matching defs:ssl
19 #include <openssl/ssl.h>
55 static int verify_chain(SSL *ssl, STACK_OF(X509) *chain)
64 || !TEST_ptr(ssl_ctx = SSL_get_SSL_CTX(ssl))
68 ssl)))
71 X509_STORE_CTX_set_default(store_ctx, SSL_is_server(ssl)
74 SSL_get0_param(ssl));
75 store_ctx_dane_init(store_ctx, ssl);
77 if (SSL_get_verify_callback(ssl) != NULL)
78 X509_STORE_CTX_set_verify_cb(store_ctx, SSL_get_verify_callback(ssl));
84 SSL_set_verify_result(ssl, X509_STORE_CTX_get_error(store_ctx));
243 static int tlsa_import_rr(SSL *ssl, const char *rrdata)
268 ret = SSL_dane_tlsa_add(ssl, usage, selector, mtype, data, len);
296 SSL *ssl;
322 if (!TEST_ptr(ssl = SSL_new(ctx)))
324 SSL_set_connect_state(ssl);
325 if (SSL_dane_enable(ssl, base_name) <= 0) {
326 SSL_free(ssl);
330 SSL_dane_set_flags(ssl, DANE_FLAG_NO_DANE_EE_NAMECHECKS);
333 if ((line = read_to_eol(f)) == NULL || !tlsa_import_rr(ssl, line)) {
334 SSL_free(ssl);
342 SSL_free(ssl);
346 ok = verify_chain(ssl, chain);
348 err = SSL_get_verify_result(ssl);
354 SSL_set_verify_result(ssl, X509_V_OK);
355 mdpth = SSL_get0_dane_authority(ssl, NULL, NULL);
357 SSL_set_verify_result(ssl, err);
358 SSL_free(ssl);
427 static void store_ctx_dane_init(X509_STORE_CTX *store_ctx, SSL *ssl)
429 X509_STORE_CTX_set0_dane(store_ctx, SSL_get0_dane(ssl));