Initial CRL based revocation checking.

author: Dr. Stephen Henson <steve@openssl.org> 2001-05-07 22:52:50 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2001-05-07 22:52:50 +0000
commit: b545dc6775cd703a258efd00f0bcb6bcb1930816 (patch)
tree: c56e54e8754048e61f8cb05b7542cf325f735169 /crypto/x509/x509_txt.c
parent: 027902999e3adec562f8286eeed09c24aa82f465 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/crypto/x509/x509_txt.c b/crypto/x509/x509_txt.c
index cfb478d4bc..417be41832 100644
--- a/crypto/x509/x509_txt.c
+++ b/crypto/x509/x509_txt.c
@@ -83,7 +83,7 @@ const char *X509_verify_cert_error_string(long n)
 	case X509_V_ERR_UNABLE_TO_DECRYPT_CERT_SIGNATURE:
 		return("unable to decrypt certificate's signature");
 	case X509_V_ERR_UNABLE_TO_DECRYPT_CRL_SIGNATURE:
-		return("unable to decrypt CRL's's signature");
+		return("unable to decrypt CRL's signature");
 	case X509_V_ERR_UNABLE_TO_DECODE_ISSUER_PUBLIC_KEY:
 		return("unable to decode issuer public key");
 	case X509_V_ERR_CERT_SIGNATURE_FAILURE:
@@ -141,6 +141,9 @@ const char *X509_verify_cert_error_string(long n)
 	case X509_V_ERR_KEYUSAGE_NO_CERTSIGN:
 		return("key usage does not include certificate signing");
 
+	case X509_V_ERR_UNABLE_TO_GET_CRL_ISSUER:
+		return("unable to get CRL issuer certificate");
+
 	default:
 		sprintf(buf,"error number %ld",n);
 		return(buf);
author	Dr. Stephen Henson <steve@openssl.org>	2001-05-07 22:52:50 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2001-05-07 22:52:50 +0000
commit	b545dc6775cd703a258efd00f0bcb6bcb1930816 (patch)
tree	c56e54e8754048e61f8cb05b7542cf325f735169 /crypto/x509/x509_txt.c
parent	027902999e3adec562f8286eeed09c24aa82f465 (diff)