document X509_STORE_CTX_get0_current_issuer(3)

and X509_STORE_CTX_get0_current_crl(3)
author: schwarze <> 2021-07-22 15:35:50 +0000
committer: schwarze <> 2021-07-22 15:35:50 +0000
commit: 88e7569f0df9996c3b42ffff7d73a3a9b210faf0 (patch)
tree: f6e2afdabeffb824bd7b79c5eeff1bd981d4bdf1 /src/lib
parent: fbd27065ffc27d490c363b3babac8a57cc51ba7a (diff)
download: openbsd-88e7569f0df9996c3b42ffff7d73a3a9b210faf0.tar.gz
openbsd-88e7569f0df9996c3b42ffff7d73a3a9b210faf0.tar.bz2
openbsd-88e7569f0df9996c3b42ffff7d73a3a9b210faf0.zip
1 files changed, 51 insertions, 5 deletions
diff --git a/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3 b/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3
index 6192c0d2fc..3ea3175b98 100644
--- a/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3
+++ b/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3
@@ -1,11 +1,28 @@
-.\" $OpenBSD: X509_STORE_CTX_get_error.3,v 1.15 2021/07/22 14:30:38 schwarze Exp $
+.\" $OpenBSD: X509_STORE_CTX_get_error.3,v 1.16 2021/07/22 15:35:50 schwarze Exp $
 .\" full merge up to:
 .\" OpenSSL crypto/X509_STORE_CTX_get_error f0e0fd51 Apr 14 23:59:26 2016 -0400
 .\" selective merge up to:
 .\" OpenSSL man3/X509_STORE_CTX_get_error 24a535ea Sep 22 13:14:20 2020 +0100
 .\" OpenSSL man3/X509_STORE_CTX_new 24a535ea Sep 22 13:14:20 2020 +0100
 .\"
-.\" This file was written by Dr. Stephen Henson <steve@openssl.org>
+.\" This file is a derived work.
+.\" The changes are covered by the following Copyright and license:
+.\"
+.\" Copyright (c) 2021 Ingo Schwarze <schwarze@openbsd.org>
+.\"
+.\" Permission to use, copy, modify, and distribute this software for any
+.\" purpose with or without fee is hereby granted, provided that the above
+.\" copyright notice and this permission notice appear in all copies.
+.\"
+.\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
+.\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
+.\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
+.\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
+.\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
+.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
+.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
+.\"
+.\" The original file was written by Dr. Stephen Henson <steve@openssl.org>
 .\" and Rich Salz <rsalz@openssl.org>.
 .\" Copyright (c) 2009, 2016 The OpenSSL Project.  All rights reserved.
 .\"
@@ -61,6 +78,8 @@
 .Nm X509_STORE_CTX_set_error ,
 .Nm X509_STORE_CTX_get_error_depth ,
 .Nm X509_STORE_CTX_get_current_cert ,
+.Nm X509_STORE_CTX_get0_current_issuer ,
+.Nm X509_STORE_CTX_get0_current_crl ,
 .Nm X509_STORE_CTX_get0_chain ,
 .Nm X509_STORE_CTX_get_chain ,
 .Nm X509_STORE_CTX_get1_chain ,
@@ -85,6 +104,14 @@
 .Fo X509_STORE_CTX_get_current_cert
 .Fa "X509_STORE_CTX *ctx"
 .Fc
+.Ft X509 *
+.Fo X509_STORE_CTX_get0_current_issuer
+.Fa "X509_STORE_CTX *ctx"
+.Fc
+.Ft X509_CRL *
+.Fo X509_STORE_CTX_get0_current_crl
+.Fa "X509_STORE_CTX *ctx"
+.Fc
 .Ft STACK_OF(X509) *
 .Fo X509_STORE_CTX_get0_chain
 .Fa "X509_STORE_CTX *ctx"
@@ -137,6 +164,16 @@ which caused the error or
 .Dv NULL
 if no certificate is relevant.
 .Pp
+.Fn X509_STORE_CTX_get0_current_issuer
+returns the certificate that caused issuer validation to fail or
+.Dv NULL
+if no CA certificate is relevant.
+.Pp
+.Fn X509_STORE_CTX_get0_current_crl
+returns the certificate revocation list that caused CRL checking to fail or
+.Dv NULL
+if no CRL is relevant.
+.Pp
 .Fn X509_STORE_CTX_get0_chain
 returns an internal pointer to a complete validate chain
 if a previous call to
@@ -185,10 +222,13 @@ or an error code.
 .Fn X509_STORE_CTX_get_error_depth
 returns a non-negative error depth.
 .Pp
-.Fn X509_STORE_CTX_get_current_cert
+.Fn X509_STORE_CTX_get_current_cert ,
-returns the certificate which caused the error or
+.Fn X509_STORE_CTX_get0_current_issuer ,
+and
+.Fn X509_STORE_CTX_get0_current_crl
+return the object which caused the error or
 .Dv NULL
-if no certificate is relevant to the error.
+if no object of the requested kind is relevant to the error.
 .Pp
 .Fn X509_STORE_CTX_get0_chain ,
 .Fn X509_STORE_CTX_get_chain ,
@@ -390,6 +430,12 @@ first appeared in SSLeay 0.8.0 and have been available since
 first appeared in OpenSSL 0.9.5 and has been available since
 .Ox 2.7 .
 .Pp
+.Fn X509_STORE_CTX_get0_current_issuer
+and
+.Fn X509_STORE_CTX_get0_current_crl
+first appeared in OpenSSL 1.0.0 and have been available since
+.Ox 4.9 .
+.Pp
 .Fn X509_STORE_CTX_get0_chain
 first appeared in OpenSSL 1.1.0 and has been available since
 .Ox 6.3 .
author	schwarze <>	2021-07-22 15:35:50 +0000
committer	schwarze <>	2021-07-22 15:35:50 +0000
commit	88e7569f0df9996c3b42ffff7d73a3a9b210faf0 (patch)
tree	f6e2afdabeffb824bd7b79c5eeff1bd981d4bdf1 /src/lib
parent	fbd27065ffc27d490c363b3babac8a57cc51ba7a (diff)
download	openbsd-88e7569f0df9996c3b42ffff7d73a3a9b210faf0.tar.gz openbsd-88e7569f0df9996c3b42ffff7d73a3a9b210faf0.tar.bz2 openbsd-88e7569f0df9996c3b42ffff7d73a3a9b210faf0.zip

diff --git a/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3 b/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3 index 6192c0d2fc..3ea3175b98 100644 --- a/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3 +++ b/src/lib/libcrypto/man/X509_STORE_CTX_get_error.3
@@ -1,11 +1,28 @@
1	.\" $OpenBSD: X509_STORE_CTX_get_error.3,v 1.15 2021/07/22 14:30:38 schwarze Exp $	1	.\" $OpenBSD: X509_STORE_CTX_get_error.3,v 1.16 2021/07/22 15:35:50 schwarze Exp $
2	.\" full merge up to:	2	.\" full merge up to:
3	.\" OpenSSL crypto/X509_STORE_CTX_get_error f0e0fd51 Apr 14 23:59:26 2016 -0400	3	.\" OpenSSL crypto/X509_STORE_CTX_get_error f0e0fd51 Apr 14 23:59:26 2016 -0400
4	.\" selective merge up to:	4	.\" selective merge up to:
5	.\" OpenSSL man3/X509_STORE_CTX_get_error 24a535ea Sep 22 13:14:20 2020 +0100	5	.\" OpenSSL man3/X509_STORE_CTX_get_error 24a535ea Sep 22 13:14:20 2020 +0100
6	.\" OpenSSL man3/X509_STORE_CTX_new 24a535ea Sep 22 13:14:20 2020 +0100	6	.\" OpenSSL man3/X509_STORE_CTX_new 24a535ea Sep 22 13:14:20 2020 +0100
7	.\"	7	.\"
8	.\" This file was written by Dr. Stephen Henson <steve@openssl.org>	8	.\" This file is a derived work.
		9	.\" The changes are covered by the following Copyright and license:
		10	.\"
		11	.\" Copyright (c) 2021 Ingo Schwarze <schwarze@openbsd.org>
		12	.\"
		13	.\" Permission to use, copy, modify, and distribute this software for any
		14	.\" purpose with or without fee is hereby granted, provided that the above
		15	.\" copyright notice and this permission notice appear in all copies.
		16	.\"
		17	.\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
		18	.\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
		19	.\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
		20	.\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
		21	.\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
		22	.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
		23	.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
		24	.\"
		25	.\" The original file was written by Dr. Stephen Henson <steve@openssl.org>
9	.\" and Rich Salz <rsalz@openssl.org>.	26	.\" and Rich Salz <rsalz@openssl.org>.
10	.\" Copyright (c) 2009, 2016 The OpenSSL Project. All rights reserved.	27	.\" Copyright (c) 2009, 2016 The OpenSSL Project. All rights reserved.
11	.\"	28	.\"
@@ -61,6 +78,8 @@
61	.Nm X509_STORE_CTX_set_error ,	78	.Nm X509_STORE_CTX_set_error ,
62	.Nm X509_STORE_CTX_get_error_depth ,	79	.Nm X509_STORE_CTX_get_error_depth ,
63	.Nm X509_STORE_CTX_get_current_cert ,	80	.Nm X509_STORE_CTX_get_current_cert ,
		81	.Nm X509_STORE_CTX_get0_current_issuer ,
		82	.Nm X509_STORE_CTX_get0_current_crl ,
64	.Nm X509_STORE_CTX_get0_chain ,	83	.Nm X509_STORE_CTX_get0_chain ,
65	.Nm X509_STORE_CTX_get_chain ,	84	.Nm X509_STORE_CTX_get_chain ,
66	.Nm X509_STORE_CTX_get1_chain ,	85	.Nm X509_STORE_CTX_get1_chain ,
@@ -85,6 +104,14 @@
85	.Fo X509_STORE_CTX_get_current_cert	104	.Fo X509_STORE_CTX_get_current_cert
86	.Fa "X509_STORE_CTX *ctx"	105	.Fa "X509_STORE_CTX *ctx"
87	.Fc	106	.Fc
		107	.Ft X509 *
		108	.Fo X509_STORE_CTX_get0_current_issuer
		109	.Fa "X509_STORE_CTX *ctx"
		110	.Fc
		111	.Ft X509_CRL *
		112	.Fo X509_STORE_CTX_get0_current_crl
		113	.Fa "X509_STORE_CTX *ctx"
		114	.Fc
88	.Ft STACK_OF(X509) *	115	.Ft STACK_OF(X509) *
89	.Fo X509_STORE_CTX_get0_chain	116	.Fo X509_STORE_CTX_get0_chain
90	.Fa "X509_STORE_CTX *ctx"	117	.Fa "X509_STORE_CTX *ctx"
@@ -137,6 +164,16 @@ which caused the error or
137	.Dv NULL	164	.Dv NULL
138	if no certificate is relevant.	165	if no certificate is relevant.
139	.Pp	166	.Pp
		167	.Fn X509_STORE_CTX_get0_current_issuer
		168	returns the certificate that caused issuer validation to fail or
		169	.Dv NULL
		170	if no CA certificate is relevant.
		171	.Pp
		172	.Fn X509_STORE_CTX_get0_current_crl
		173	returns the certificate revocation list that caused CRL checking to fail or
		174	.Dv NULL
		175	if no CRL is relevant.
		176	.Pp
140	.Fn X509_STORE_CTX_get0_chain	177	.Fn X509_STORE_CTX_get0_chain
141	returns an internal pointer to a complete validate chain	178	returns an internal pointer to a complete validate chain
142	if a previous call to	179	if a previous call to
@@ -185,10 +222,13 @@ or an error code.
185	.Fn X509_STORE_CTX_get_error_depth	222	.Fn X509_STORE_CTX_get_error_depth
186	returns a non-negative error depth.	223	returns a non-negative error depth.
187	.Pp	224	.Pp
188	.Fn X509_STORE_CTX_get_current_cert	225	.Fn X509_STORE_CTX_get_current_cert ,
189	returns the certificate which caused the error or	226	.Fn X509_STORE_CTX_get0_current_issuer ,
		227	and
		228	.Fn X509_STORE_CTX_get0_current_crl
		229	return the object which caused the error or
190	.Dv NULL	230	.Dv NULL
191	if no certificate is relevant to the error.	231	if no object of the requested kind is relevant to the error.
192	.Pp	232	.Pp
193	.Fn X509_STORE_CTX_get0_chain ,	233	.Fn X509_STORE_CTX_get0_chain ,
194	.Fn X509_STORE_CTX_get_chain ,	234	.Fn X509_STORE_CTX_get_chain ,
@@ -390,6 +430,12 @@ first appeared in SSLeay 0.8.0 and have been available since
390	first appeared in OpenSSL 0.9.5 and has been available since	430	first appeared in OpenSSL 0.9.5 and has been available since
391	.Ox 2.7 .	431	.Ox 2.7 .
392	.Pp	432	.Pp
		433	.Fn X509_STORE_CTX_get0_current_issuer
		434	and
		435	.Fn X509_STORE_CTX_get0_current_crl
		436	first appeared in OpenSSL 1.0.0 and have been available since
		437	.Ox 4.9 .
		438	.Pp
393	.Fn X509_STORE_CTX_get0_chain	439	.Fn X509_STORE_CTX_get0_chain
394	first appeared in OpenSSL 1.1.0 and has been available since	440	first appeared in OpenSSL 1.1.0 and has been available since
395	.Ox 6.3 .	441	.Ox 6.3 .