diff options
| author | Richard Levitte <levitte@openssl.org> | 2019-11-10 15:36:24 +0100 |
|---|---|---|
| committer | Richard Levitte <levitte@openssl.org> | 2019-11-12 13:38:36 +0100 |
| commit | ee669781d5de4c017595149c6036ca24b35aa2c7 (patch) | |
| tree | be9572dde7001244e81cd7a469de9e356fbacb76 /doc | |
| parent | 5aaba376189c0d606b832877b037d51caf338e7f (diff) | |
SSL: Document SSL_add_{file,dir,store}_cert_subjects_to_stack()
This also removes the incorrect documentation comments by those
functions, and fixes a bug in SSL_add_store_cert_subjects_to_stack(),
where the condition for recursive addition was 'depth == 0' when it
should be 'depth > 0'.
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/10402)
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/man3/SSL_load_client_CA_file.pod | 33 |
1 files changed, 30 insertions, 3 deletions
diff --git a/doc/man3/SSL_load_client_CA_file.pod b/doc/man3/SSL_load_client_CA_file.pod index 23449dd3c3..ea3bbaf541 100644 --- a/doc/man3/SSL_load_client_CA_file.pod +++ b/doc/man3/SSL_load_client_CA_file.pod @@ -2,7 +2,11 @@ =head1 NAME -SSL_load_client_CA_file - load certificate names from file +SSL_load_client_CA_file, +SSL_add_file_cert_subjects_to_stack, +SSL_add_dir_cert_subjects_to_stack, +SSL_add_store_cert_subjects_to_stack +- load certificate names =head1 SYNOPSIS @@ -10,11 +14,29 @@ SSL_load_client_CA_file - load certificate names from file STACK_OF(X509_NAME) *SSL_load_client_CA_file(const char *file); + int SSL_add_file_cert_subjects_to_stack(STACK_OF(X509_NAME) *stack, + const char *file) + int SSL_add_dir_cert_subjects_to_stack(STACK_OF(X509_NAME) *stack, + const char *dir) + int SSL_add_store_cert_subjects_to_stack(STACK_OF(X509_NAME) *stack, + const char *store) + =head1 DESCRIPTION -SSL_load_client_CA_file() reads certificates from B<file> and returns +SSL_load_client_CA_file() reads certificates from I<file> and returns a STACK_OF(X509_NAME) with the subject names found. +SSL_add_file_cert_subjects_to_stack() reads certificates from I<file>, +and adds their subject name to the already existing I<stack>. + +SSL_add_dir_cert_subjects_to_stack() reads certificates from every +file in the directory I<dir>, and adds their subject name to the +already existing I<stack>. + +SSL_add_store_cert_subjects_to_stack() loads certificates from the +I<store> URI, and adds their subject name to the already existing +I<stack>. + =head1 NOTES SSL_load_client_CA_file() reads a file of PEM formatted certificates and @@ -57,11 +79,16 @@ Load names of CAs from file and use it as a client CA list: =head1 SEE ALSO L<ssl(7)>, +L<ossl_store(7)>, L<SSL_CTX_set_client_CA_list(3)> +=head1 HISTORY + +SSL_add_store_cert_subjects_to_stack() was added in OpenSSL 3.0. + =head1 COPYRIGHT -Copyright 2000-2016 The OpenSSL Project Authors. All Rights Reserved. +Copyright 2000-2019 The OpenSSL Project Authors. All Rights Reserved. Licensed under the Apache License 2.0 (the "License"). You may not use this file except in compliance with the License. You can obtain a copy |