Browse Source

Add X509_STORE_load_mem() to load certificates from a memory buffer

instead of disk.  OpenSSL didn't provide a built-in API from loading
certificates in a chroot'ed process that doesn't have direct access to
the files.  X509_STORE_load_mem() provides a new backend that will be
used by libssl and libtls to implement such privsep-friendly
functionality.
Adopted for LibreSSL based on older code from relayd (by pyr@ and myself)
With feedback and OK bluhm@
OPENBSD_5_7
reyk 10 years ago
parent
commit
2f3cb396e7
2 changed files with 3 additions and 3 deletions
  1. +2
    -2
      src/lib/libcrypto/crypto/Makefile
  2. +1
    -1
      src/lib/libcrypto/crypto/shlib_version

+ 2
- 2
src/lib/libcrypto/crypto/Makefile View File

@ -1,4 +1,4 @@
# $OpenBSD: Makefile,v 1.51 2014/12/03 22:14:38 bcook Exp $
# $OpenBSD: Makefile,v 1.52 2015/01/22 09:06:39 reyk Exp $
LIB= crypto LIB= crypto
@ -256,7 +256,7 @@ SRCS+= x509_obj.c x509_req.c x509spki.c x509_vfy.c
SRCS+= x509_set.c x509cset.c x509rset.c x509_err.c SRCS+= x509_set.c x509cset.c x509rset.c x509_err.c
SRCS+= x509name.c x509_v3.c x509_ext.c x509_att.c SRCS+= x509name.c x509_v3.c x509_ext.c x509_att.c
SRCS+= x509type.c x509_lu.c x_all.c x509_txt.c SRCS+= x509type.c x509_lu.c x_all.c x509_txt.c
SRCS+= x509_trs.c by_file.c by_dir.c x509_vpm.c
SRCS+= x509_trs.c by_file.c by_dir.c by_mem.c x509_vpm.c
# x509v3/ # x509v3/
SRCS+= v3_bcons.c v3_bitst.c v3_conf.c v3_extku.c v3_ia5.c v3_lib.c SRCS+= v3_bcons.c v3_bitst.c v3_conf.c v3_extku.c v3_ia5.c v3_lib.c


+ 1
- 1
src/lib/libcrypto/crypto/shlib_version View File

@ -1,2 +1,2 @@
major=30 major=30
minor=3
minor=4

Loading…
Cancel
Save