851      * server cert issuers are found under SSLCACertificatePath or in
936                                   X509 *cert,
941     if (!cert) {
949     if (SSL_X509_getBC(cert, &is_ca, &pathlen)) {
964     if (SSL_X509_match_name(ptemp, cert, (const char *)s->server_hostname,
987     X509 *cert;
1076          * as soon as we no longer need access to the cert. (Strictly speaking,
1082         if (!(cert = SSL_CTX_get0_certificate(mctx->ssl_ctx))) {
1088             cert = SSL_get_certificate(ssl);
1090         if (!ssl || !cert) {
1101         /* warn about potential cert issues */
1102         ssl_check_public_cert(s, ptemp, cert, key_id);
1113             !ssl_stapling_init_cert(s, p, ptemp, mctx, cert)) {
1275                          "incomplete client cert configured for SSL proxy "
1301      * from each configured end-entity cert up to a root.  This will
1302      * allow selection of the correct cert given a list of root CA
1309                      "SSL proxy client cert initialization failed");
1322         /* Attempt to verify the client cert */
1326                            APLOGNO(02270) "SSL proxy client cert chain "
1338             /* Discard end entity cert from the chain */
1353                            "loaded %i intermediate CA%s for cert %i: ",
1465         X509 *cert;
1470             cert = SSL_CTX_get0_certificate(sc->server->ssl_ctx);
1471             if (!cert || !ssl_stapling_init_cert(s, p, ptemp, sc->server,
1472                                                  cert)) {

Indexes created Tue Jul 24 14:28:13 CEST 2018