Lines Matching +full:- +full:- +full:no +full:- +full:check +full:- +full:certificate
2 * Copyright 1995-2022 The OpenSSL Project Authors. All Rights Reserved.
22 static int check(X509_STORE *ctx, const char *file,
39 {OPT_HELP_STR, 1, '-', "Usage: %s [options] [cert...]\n"},
42 {"help", OPT_HELP, '-', "Display this summary"},
46 {"verbose", OPT_VERBOSE, '-',
48 {"nameopt", OPT_NAMEOPT, 's', "Certificate subject/issuer name printing options"},
50 OPT_SECTION("Certificate chain"),
55 {"no-CAfile", OPT_NOCAFILE, '-',
57 {"no-CApath", OPT_NOCAPATH, '-',
59 {"no-CAstore", OPT_NOCASTORE, '-',
64 {"crl_download", OPT_CRL_DOWNLOAD, '-',
66 {"show_chain", OPT_SHOW_CHAIN, '-',
67 "Display information about the certificate chain"},
75 {"cert", 0, 0, "Certificate(s) to verify (optional; stdin used otherwise)"},
101 BIO_printf(bio_err, "%s: Use -help for summary.\n", prog); in verify_main()
105 BIO_printf(bio_err, "\nRecognized certificate chain purposes:\n"); in verify_main()
109 BIO_printf(bio_err, " %-15s %s\n", in verify_main()
114 BIO_printf(bio_err, "Recognized certificate policy names:\n"); in verify_main()
204 "%s: Cannot use -trusted with -CAfile, -CApath or -CAstore\n", in verify_main()
224 if (check(store, NULL, untrusted, trusted, crls, show_chain, in verify_main()
226 ret = -1; in verify_main()
229 if (check(store, argv[i], untrusted, trusted, crls, show_chain, in verify_main()
231 ret = -1; in verify_main()
245 static int check(X509_STORE *ctx, const char *file, in check() function
256 x = load_cert(file, FORMAT_UNDEF, "certificate file"); in check()
348 * processing of the certificate chain. Setting ok = 1 does this. in cb()
350 * no actual errors, even if the returned value was positive. in cb()
357 /* Continue even if the leaf is a self-signed cert */ in cb()
366 /* errors due to strict conformance checking (-x509_strict) */ in cb()