summaryrefslogtreecommitdiffstats
path: root/OpenSSL/Timestamp/Response.html
diff options
context:
space:
mode:
Diffstat (limited to 'OpenSSL/Timestamp/Response.html')
-rw-r--r--OpenSSL/Timestamp/Response.html11
1 files changed, 4 insertions, 7 deletions
diff --git a/OpenSSL/Timestamp/Response.html b/OpenSSL/Timestamp/Response.html
index 166a9a74..ff9fd04f 100644
--- a/OpenSSL/Timestamp/Response.html
+++ b/OpenSSL/Timestamp/Response.html
@@ -531,17 +531,14 @@ ossl_ts_resp_verify(int argc, VALUE *argv, VALUE self)
X509_up_ref(cert);
}
- TS_VERIFY_CTS_set_certs(ctx, x509inter);
+ TS_VERIFY_CTX_set_certs(ctx, x509inter);
TS_VERIFY_CTX_add_flags(ctx, TS_VFY_SIGNATURE);
TS_VERIFY_CTX_set_store(ctx, x509st);
ok = TS_RESP_verify_response(ctx, resp);
-
- /* WORKAROUND:
- * X509_STORE can count references, but X509_STORE_free() doesn't check
- * this. To prevent our X509_STORE from being freed with our
- * TS_VERIFY_CTX we set the store to NULL first.
- * Fixed in OpenSSL 1.0.2; bff9ce4db38b (master), 5b4b9ce976fc (1.0.2)
+ /*
+ * TS_VERIFY_CTX_set_store() call above does not increment the reference
+ * counter, so it must be unset before TS_VERIFY_CTX_free() is called.
*/
TS_VERIFY_CTX_set_store(ctx, NULL);
TS_VERIFY_CTX_free(ctx);
generated by cgit v1.2.3 (git 2.39.1) at 2024-04-30 01:51:39 +0000