First pass of streamlining X509_STORE_get1_{certs,crls}() - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	tb <>	2021-11-05 21:39:45 +0000
committer	tb <>	2021-11-05 21:39:45 +0000
commit	2a0dcc649bf1b347727e4bebbf97fba6b93599aa (patch)
tree	6da7a41a22a92d3e796258ed67cc392b3160ee85 /src/lib/libssl/tls13_error.c
parent	75972b6d33773b2f8f8f14548445a6ce936160f6 (diff)
download	openbsd-2a0dcc649bf1b347727e4bebbf97fba6b93599aa.tar.gz openbsd-2a0dcc649bf1b347727e4bebbf97fba6b93599aa.tar.bz2 openbsd-2a0dcc649bf1b347727e4bebbf97fba6b93599aa.zip

First pass of streamlining X509_STORE_get1_{certs,crls}()

These functions are quite messy. On top of the tricky logic querying the cache, then refreshing the cache (unconditionally or not), then querying again, then extracting a list of certs/crls and bumping their refcounts, things are intermixed with locking and needlessly early allocations that then need to be cleaned up again. Use X509_STORE_CTX_get_obj_by_subject() to avoid using an object on the stack and defer allocation of the returned stack of certs to later. Flatten the logic a bit and prepare for further refactoring. ok jsing

Diffstat (limited to 'src/lib/libssl/tls13_error.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: