Salz, Rich wrote:
Can you look at https://github.com/openssl/openssl/pull/1044 [SNIP ]
I pushed a new version that adds your feedback.
10x, it's fine by me.
Roumen
--
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
> > Can you look at https://github.com/openssl/openssl/pull/1044 and see if it
> addresses the issues?
> Yes.
Great, thanks!
> May be with some definitions for backward compatibility. I mean for
> renamed pre 1.1 functions - with inserted ..._CTX into name of :
> -
Hi Rich,
Salz, Rich wrote:
Can you look at https://github.com/openssl/openssl/pull/1044 and see if it
addresses the issues?
Yes.
May be with some definitions for backward compatibility. I mean for
renamed pre 1.1 functions - with inserted ..._CTX into name of :
-
Saturday, May 07, 2016 4:46 AM
> To: openssl-dev@openssl.org
> Subject: Re: [openssl-dev] use of X.509 lookup methods, X509_OBJECT
> internal or opaque?
>
> Roumen Petrov wrote:
> > [SNIP]
> > This is my request - to define:
> > - X509 *X509_STORE_get_X509_by_subject
Hi Rich,
Scope of my request is "use of a lookup method".
Salz, Rich wrote:
You need
(1)
I test port to current openssl code with following definitions
X509_OBJECT_new() and X509_OBJECT_get0_X509_CRL. :
diff --git a/crypto/x509/x509_lu.c b/crypto/x509/x509_lu.c
index ff64821..8547b0d
> You need
> X509 *X509_STORE_get_X509_by_subject(X509_STORE_CTX *vs,
> X509_NAME *name)
> X509_CRL *X509_STORE_get_X509_CRL_by_subject(X509_STORE_CTX *vs,
> X509_NAME *name) And replace the existing
> "X509_STORE_get_X509_by_subject"
>
> We also need X590_OBJECT_new() and
So let me try to summarize.
You need
X509 *X509_STORE_get_X509_by_subject(X509_STORE_CTX *vs, X509_NAME *name)
X509_CRL *X509_STORE_get_X509_CRL_by_subject(X509_STORE_CTX *vs, X509_NAME
*name)
And replace the existing "X509_STORE_get_X509_by_subject"
We also need X590_OBJECT_new() and
> I'm concerned that according plan next release is final one.
Thank you for the feedback!
We know that various accessors still need to be provided, and things like what
you pointed out are bugs to be fixed.
If there are other things you find missing, please let us know.
--
openssl-dev