git.openssl.org Git - openssl.git/commit

author	Richard Levitte <levitte@openssl.org>
	Wed, 6 Mar 2019 22:34:19 +0000 (23:34 +0100)
committer	Richard Levitte <levitte@openssl.org>
	Sun, 3 Nov 2019 17:38:23 +0000 (18:38 +0100)
commit	6dcb100f89d0ef081771d533fed342412ac7a13f
tree	894398ff0852648209dcb6e92349fa11236ea5b6	tree \| snapshot
parent	e3c4ad283bd1a52f3d53de22e4fc6053bade14d6	commit \| diff

X509_LOOKUP_store: new X509_LOOKUP_METHOD that works by OSSL_STORE URI

This is a wrapper around OSSL_STORE.

This also adds necessary support functions:

- X509_STORE_load_file
- X509_STORE_load_path
- X509_STORE_load_store
- SSL_add_store_cert_subjects_to_stack
- SSL_CTX_set_default_verify_store
- SSL_CTX_load_verify_file
- SSL_CTX_load_verify_dir
- SSL_CTX_load_verify_store

and deprecates X509_STORE_load_locations and SSL_CTX_load_verify_locations,
as they aren't extensible.

Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/8442)

crypto/err/openssl.txt		diff \| blob \| history
crypto/x509/build.info		diff \| blob \| history
crypto/x509/by_store.c	[new file with mode: 0644]	blob
crypto/x509/x509_d2.c		diff \| blob \| history
include/openssl/ssl.h		diff \| blob \| history
include/openssl/x509_vfy.h		diff \| blob \| history
ssl/ssl_cert.c		diff \| blob \| history
ssl/ssl_conf.c		diff \| blob \| history
ssl/ssl_lib.c		diff \| blob \| history
util/libcrypto.num		diff \| blob \| history
util/libssl.num		diff \| blob \| history