summaryrefslogtreecommitdiff
path: root/src/lib/libcrypto/x509
diff options
context:
space:
mode:
authortb <>2024-08-31 09:56:50 +0000
committertb <>2024-08-31 09:56:50 +0000
commitc92ddde3194a70c609ab5dd8987a10b6cf10c12f (patch)
tree88a649b66a44d0f9c4b6bd862981be47f4ac18c5 /src/lib/libcrypto/x509
parentdd1c0533fa84d7ee8bbf2e4d256d3225e2057fe0 (diff)
downloadopenbsd-c92ddde3194a70c609ab5dd8987a10b6cf10c12f.tar.gz
openbsd-c92ddde3194a70c609ab5dd8987a10b6cf10c12f.tar.bz2
openbsd-c92ddde3194a70c609ab5dd8987a10b6cf10c12f.zip
Retire X509V3_EXT_{,CRL_,REQ_}add_conf()
Fortunately all projects who want to configure their extensions using a dangerous string DSL/API figured out the fact that one was supposed to be using the nconf version of these (the hint is the 'n', as in new). ok beck jsing
Diffstat (limited to 'src/lib/libcrypto/x509')
-rw-r--r--src/lib/libcrypto/x509/x509_conf.c29
-rw-r--r--src/lib/libcrypto/x509/x509v3.h8
2 files changed, 2 insertions, 35 deletions
diff --git a/src/lib/libcrypto/x509/x509_conf.c b/src/lib/libcrypto/x509/x509_conf.c
index 27f89072c8..dee9bf65e0 100644
--- a/src/lib/libcrypto/x509/x509_conf.c
+++ b/src/lib/libcrypto/x509/x509_conf.c
@@ -1,4 +1,4 @@
1/* $OpenBSD: x509_conf.c,v 1.23 2024/08/31 09:21:44 tb Exp $ */ 1/* $OpenBSD: x509_conf.c,v 1.24 2024/08/31 09:56:50 tb Exp $ */
2/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL 2/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
3 * project 1999. 3 * project 1999.
4 */ 4 */
@@ -489,30 +489,3 @@ X509V3_set_conf_lhash(X509V3_CTX *ctx, LHASH_OF(CONF_VALUE) *lhash)
489{ 489{
490} 490}
491LCRYPTO_ALIAS(X509V3_set_conf_lhash); 491LCRYPTO_ALIAS(X509V3_set_conf_lhash);
492
493int
494X509V3_EXT_add_conf(LHASH_OF(CONF_VALUE) *conf, X509V3_CTX *ctx,
495 const char *section, X509 *cert)
496{
497 X509V3error(ERR_R_DISABLED);
498 return 0;
499}
500LCRYPTO_ALIAS(X509V3_EXT_add_conf);
501
502int
503X509V3_EXT_CRL_add_conf(LHASH_OF(CONF_VALUE) *conf, X509V3_CTX *ctx,
504 const char *section, X509_CRL *crl)
505{
506 X509V3error(ERR_R_DISABLED);
507 return 0;
508}
509LCRYPTO_ALIAS(X509V3_EXT_CRL_add_conf);
510
511int
512X509V3_EXT_REQ_add_conf(LHASH_OF(CONF_VALUE) *conf, X509V3_CTX *ctx,
513 const char *section, X509_REQ *req)
514{
515 X509V3error(ERR_R_DISABLED);
516 return 0;
517}
518LCRYPTO_ALIAS(X509V3_EXT_REQ_add_conf);
diff --git a/src/lib/libcrypto/x509/x509v3.h b/src/lib/libcrypto/x509/x509v3.h
index b38e175954..6470f059ee 100644
--- a/src/lib/libcrypto/x509/x509v3.h
+++ b/src/lib/libcrypto/x509/x509v3.h
@@ -1,4 +1,4 @@
1/* $OpenBSD: x509v3.h,v 1.30 2024/08/28 08:22:57 tb Exp $ */ 1/* $OpenBSD: x509v3.h,v 1.31 2024/08/31 09:56:50 tb Exp $ */
2/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL 2/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
3 * project 1999. 3 * project 1999.
4 */ 4 */
@@ -647,12 +647,6 @@ X509_EXTENSION *X509V3_EXT_conf_nid(LHASH_OF(CONF_VALUE) *conf, X509V3_CTX *ctx,
647 int ext_nid, const char *value); 647 int ext_nid, const char *value);
648X509_EXTENSION *X509V3_EXT_conf(LHASH_OF(CONF_VALUE) *conf, X509V3_CTX *ctx, 648X509_EXTENSION *X509V3_EXT_conf(LHASH_OF(CONF_VALUE) *conf, X509V3_CTX *ctx,
649 const char *name, const char *value); 649 const char *name, const char *value);
650int X509V3_EXT_add_conf(LHASH_OF(CONF_VALUE) *conf, X509V3_CTX *ctx,
651 const char *section, X509 *cert);
652int X509V3_EXT_REQ_add_conf(LHASH_OF(CONF_VALUE) *conf, X509V3_CTX *ctx,
653 const char *section, X509_REQ *req);
654int X509V3_EXT_CRL_add_conf(LHASH_OF(CONF_VALUE) *conf, X509V3_CTX *ctx,
655 const char *section, X509_CRL *crl);
656 650
657int X509V3_add_value_bool_nf(const char *name, int asn1_bool, 651int X509V3_add_value_bool_nf(const char *name, int asn1_bool,
658 STACK_OF(CONF_VALUE) **extlist); 652 STACK_OF(CONF_VALUE) **extlist);
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-08-22 14:28:01 +0000