bearssl_x509.h - OpenGrok cross reference for /freebsd/contrib/bearssl/inc/bearssl

Lines Matching full:509
41  * # X.509 Certificate Chain Processing
43  * An X.509 processing engine receives an X.509 chain, chunk by chunk,
59  * **The "minimal" engine** implements minimal X.509 decoding and chain
65  *   - X.509 v1, v2 and v3 certificates are supported.
125  * X.509 error codes are in the 32..63 range.
128 /** \brief X.509 status: validation was successful; this is not actually
132 /** \brief X.509 status: invalid value in an ASN.1 structure. */
135 /** \brief X.509 status: truncated certificate. */
138 /** \brief X.509 status: empty certificate chain (no certificate at all). */
141 /** \brief X.509 status: decoding error: inner element extends beyond
145 /** \brief X.509 status: decoding error: unsupported tag class (application
149 /** \brief X.509 status: decoding error: unsupported tag value. */
152 /** \brief X.509 status: decoding error: indefinite length. */
155 /** \brief X.509 status: decoding error: extraneous element. */
158 /** \brief X.509 status: decoding error: unexpected element. */
161 /** \brief X.509 status: decoding error: expected constructed element, but
165 /** \brief X.509 status: decoding error: expected primitive element, but
169 /** \brief X.509 status: decoding error: BIT STRING length is not multiple
173 /** \brief X.509 status: decoding error: BOOLEAN value has invalid length. */
176 /** \brief X.509 status: decoding error: value is off-limits. */
179 /** \brief X.509 status: invalid distinguished name. */
182 /** \brief X.509 status: invalid date/time representation. */
185 /** \brief X.509 status: certificate contains unsupported features that
189 /** \brief X.509 status: key or signature size exceeds internal limits. */
192 /** \brief X.509 status: key type does not match that which was expected. */
195 /** \brief X.509 status: signature is invalid. */
198 /** \brief X.509 status: validation time is unknown. */
201 /** \brief X.509 status: certificate is expired or not yet valid. */
204 /** \brief X.509 status: issuer/subject DN mismatch in the chain. */
207 /** \brief X.509 status: expected server name was not found in the chain. */
210 /** \brief X.509 status: unknown critical extension in certificate. */
213 /** \brief X.509 status: not a CA, or path length constraint violation */
216 /** \brief X.509 status: Key Usage extension prohibits intended usage. */
219 /** \brief X.509 status: public key found in certificate is too small. */
222 /** \brief X.509 status: chain could not be linked to a trust anchor. */
292  * (`BR_KEYTYPE_RSA` or `BR_KEYTYPE_EC`) when informing the X.509
303  * (`BR_KEYTYPE_RSA` or `BR_KEYTYPE_EC`) when informing the X.509
344  * \brief Class type for an X.509 engine.
371 	 * \brief X.509 context size, in bytes.
471  * \brief The "known key" X.509 engine structure.
489  * \brief Class instance for the "known key" X.509 engine.
494  * \brief Initialize a "known key" X.509 engine with a known RSA public key.
510  * \brief Initialize a "known key" X.509 engine with a known EC public key.
527  * The minimal X.509 engine has some state buffers which must be large
546  * cost of public key operations. The X.509 "minimal" engine will tolerate
561  * An array of such structures can be provided to the X.509 decoding
632  * and the notBefore and notAfter dates specified in an X.509 certificate,
657  * considered X.509 certificate. Validation fails if any of the calls
675  * \brief The "minimal" X.509 engine structure.
680  * The "minimal" engine performs a rudimentary but serviceable X.509 path
789  * \brief Class instance for the "minimal" X.509 engine.
794  * \brief Initialise a "minimal" X.509 engine.
814  * \brief Set a supported hash function in an X.509 "minimal" engine.
838  * \brief Set a RSA signature verification implementation in the X.509
857  * \brief Set a ECDSA signature verification implementation in the X.509
882  * \brief Initialise a "minimal" X.509 engine with default algorithms.
896  * \brief Set the validation time for the X.509 "minimal" engine.
933  * \brief Set the validity range callback function for the X.509
937  * date is within the validity range for a given X.509 certificate; a
954  * \brief Set the minimal acceptable length for RSA keys (X.509 "minimal"
993  * \brief X.509 decoder context.
995  * This structure is _not_ for X.509 validation, but for extracting
1052  * \brief Initialise an X.509 decoder context for processing a new
1060  * \param ctx             X.509 decoder context to initialise.
1074  * \param ctx    X.509 decoder context.
1090  * \param ctx   X.509 decoder context.
1110  * \param ctx   X.509 decoder context.
1126  * \brief Get the "isCA" flag from an X.509 decoder context.
1132  * \param ctx   X.509 decoder context.
1148  * \param ctx   X.509 decoder context.
1163  * \param ctx   X.509 decoder context.
1173  * \brief Type for an X.509 certificate (DER-encoded).