Add part of chain verify SSL support code: not complete or doing anything

yet. Add a function X509_STORE_CTX_purpose_inherit() which implements the logic of "inheriting" purpose and trust from a parent structure and using a default: this will be used in the SSL code and possibly future S/MIME. Partial documentation of the 'verify' utility. Still need to document how all the extension checking works and the various error messages.
author: Dr. Stephen Henson <steve@openssl.org> 1999-11-29 01:09:25 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 1999-11-29 01:09:25 +0000
commit: 13938acecae8f1b455812d0388e2891abd1c096d (patch)
tree: a0c899c89f6126f075ca6b88f15f3134bfe21ebe /apps/x509.c
parent: 51630a37069a0792f2d6ad6ce33e9c5cca27b69c (diff)
download: openssl-13938acecae8f1b455812d0388e2891abd1c096d.tar.gz
1 files changed, 2 insertions, 4 deletions
diff --git a/apps/x509.c b/apps/x509.c
index 86896088fb..caf5946287 100644
--- a/apps/x509.c
+++ b/apps/x509.c
@@ -384,8 +384,7 @@ bad:
 		app_RAND_load_file(NULL, bio_err, 0);
 
 	ERR_load_crypto_strings();
-	X509V3_add_standard_extensions();
-	X509_PURPOSE_add_standard();
+	X509_init();
 
 	if (!X509_STORE_set_default_paths(ctx))
 		{
@@ -871,8 +870,7 @@ end:
 	EVP_PKEY_free(Upkey);
 	EVP_PKEY_free(CApkey);
 	X509_REQ_free(rq);
-	X509V3_EXT_cleanup();
-	X509_PURPOSE_cleanup();
+	X509_cleanup();
 	EXIT(ret);
 	}
author	Dr. Stephen Henson <steve@openssl.org>	1999-11-29 01:09:25 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	1999-11-29 01:09:25 +0000
commit	13938acecae8f1b455812d0388e2891abd1c096d (patch)
tree	a0c899c89f6126f075ca6b88f15f3134bfe21ebe /apps/x509.c
parent	51630a37069a0792f2d6ad6ce33e9c5cca27b69c (diff)
download	openssl-13938acecae8f1b455812d0388e2891abd1c096d.tar.gz