1 files changed, 0 insertions, 268 deletions
diff --git a/src/lib/libcrypto/man/X509_STORE_set1_param.3 b/src/lib/libcrypto/man/X509_STORE_set1_param.3
deleted file mode 100644
index 527fe652e5..0000000000
--- a/src/lib/libcrypto/man/X509_STORE_set1_param.3
+++ /dev/null
@@ -1,268 +0,0 @@
-.\" $OpenBSD: X509_STORE_set1_param.3,v 1.22 2024/03/14 22:19:12 tb Exp $
-.\" content checked up to:
-.\" OpenSSL man3/X509_STORE_add_cert b0edda11 Mar 20 13:00:17 2018 +0000
-.\" OpenSSL man3/X509_STORE_get0_param e90fc053 Jul 15 09:39:45 2017 -0400
-.\"
-.\" Copyright (c) 2018 Ingo Schwarze <schwarze@openbsd.org>
-.\"
-.\" Permission to use, copy, modify, and distribute this software for any
-.\" purpose with or without fee is hereby granted, provided that the above
-.\" copyright notice and this permission notice appear in all copies.
-.\"
-.\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
-.\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
-.\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
-.\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
-.\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
-.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
-.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
-.\"
-.Dd $Mdocdate: March 14 2024 $
-.Dt X509_STORE_SET1_PARAM 3
-.Os
-.Sh NAME
-.Nm X509_STORE_set1_param ,
-.Nm X509_STORE_set_flags ,
-.Nm X509_STORE_set_purpose ,
-.Nm X509_STORE_set_trust ,
-.Nm X509_STORE_set_depth ,
-.Nm X509_STORE_add_cert ,
-.Nm X509_STORE_add_crl ,
-.Nm X509_STORE_get0_param ,
-.Nm X509_STORE_get1_objects ,
-.Nm X509_STORE_get0_objects ,
-.Nm X509_STORE_get_ex_new_index ,
-.Nm X509_STORE_set_ex_data ,
-.Nm X509_STORE_get_ex_data
-.Nd get and set X509_STORE data
-.Sh SYNOPSIS
-.In openssl/x509_vfy.h
-.Ft int
-.Fo X509_STORE_set1_param
-.Fa "X509_STORE *store"
-.Fa "X509_VERIFY_PARAM *pm"
-.Fc
-.Ft int
-.Fo X509_STORE_set_flags
-.Fa "X509_STORE *store"
-.Fa "unsigned long flags"
-.Fc
-.Ft int
-.Fo X509_STORE_set_purpose
-.Fa "X509_STORE *store"
-.Fa "int purpose"
-.Fc
-.Ft int
-.Fo X509_STORE_set_trust
-.Fa "X509_STORE *store"
-.Fa "int trust"
-.Fc
-.Ft int
-.Fo X509_STORE_set_depth
-.Fa "X509_STORE *store"
-.Fa "int depth"
-.Fc
-.Ft int
-.Fo X509_STORE_add_cert
-.Fa "X509_STORE *store"
-.Fa "X509 *x"
-.Fc
-.Ft int
-.Fo X509_STORE_add_crl
-.Fa "X509_STORE *store"
-.Fa "X509_CRL *crl"
-.Fc
-.Ft X509_VERIFY_PARAM *
-.Fo X509_STORE_get0_param
-.Fa "X509_STORE *store"
-.Fc
-.Ft STACK_OF(X509_OBJECT) *
-.Fo X509_STORE_get1_objects
-.Fa "X509_STORE *store"
-.Fc
-.Ft STACK_OF(X509_OBJECT) *
-.Fo X509_STORE_get0_objects
-.Fa "X509_STORE *store"
-.Fc
-.Ft int
-.Fo X509_STORE_get_ex_new_index
-.Fa "long argl"
-.Fa "void *argp"
-.Fa "CRYPTO_EX_new *new_func"
-.Fa "CRYPTO_EX_dup *dup_func"
-.Fa "CRYPTO_EX_free *free_func"
-.Fc
-.Ft int
-.Fo X509_STORE_set_ex_data
-.Fa "X509_STORE *store"
-.Fa "int idx"
-.Fa "void *arg"
-.Fc
-.Ft void *
-.Fo X509_STORE_get_ex_data
-.Fa "X509_STORE *store"
-.Fa "int idx"
-.Fc
-.Sh DESCRIPTION
-.Fn X509_STORE_set1_param
-copies the verification parameters from
-.Fa pm
-using
-.Xr X509_VERIFY_PARAM_set1 3
-into the verification parameter object contained in the
-.Fa store .
-.Pp
-.Fn X509_VERIFY_PARAM_set_flags ,
-.Fn X509_STORE_set_purpose ,
-.Fn X509_STORE_set_trust ,
-and
-.Fn X509_STORE_set_depth
-call
-.Fn X509_VERIFY_PARAM_set_flags ,
-.Fn X509_VERIFY_PARAM_set_purpose ,
-.Fn X509_VERIFY_PARAM_set_trust ,
-and
-.Fn X509_VERIFY_PARAM_set_depth
-on the verification parameter object contained in the
-.Fa store .
-.Pp
-.Fn X509_STORE_add_cert
-and
-.Fn X509_STORE_add_crl
-add the certificate
-.Fa x
-or the certificate revocation list
-.Fa crl
-to the
-.Fa store ,
-increasing its reference count by 1 in case of success.
-Untrusted objects should not be added in this way.
-.Pp
-.Fn X509_STORE_get_ex_new_index ,
-.Fn X509_STORE_set_ex_data ,
-and
-.Fn X509_STORE_get_ex_data
-handle application specific data in
-.Vt X509_STORE
-objects.
-Their usage is identical to that of
-.Xr RSA_get_ex_new_index 3 ,
-.Xr RSA_set_ex_data 3 ,
-and
-.Xr RSA_get_ex_data 3 .
-.Fn X509_STORE_get_ex_new_index
-is implemented as a macro.
-.Sh RETURN VALUES
-.Fn X509_STORE_set1_param ,
-.Fn X509_STORE_set_purpose ,
-.Fn X509_STORE_set_trust ,
-and
-.Fn X509_STORE_set_ex_data
-return 1 for success or 0 for failure.
-.Pp
-.Fn X509_STORE_set_flags
-and
-.Fn X509_STORE_set_depth
-always return 1, indicating success.
-.Pp
-.Fn X509_STORE_add_cert
-and
-.Fn X509_STORE_add_crl
-return 1 for success or 0 for failure.
-For example, they fail if
-.Fa x
-or
-.Fa crl
-is a
-.Dv NULL
-pointer, if a certificate with the same subject name as
-.Fa x
-or a revocation list with the same issuer name as
-.Fa crl
-are already contained in the
-.Fa store ,
-or if memory allocation fails.
-.Pp
-.Fn X509_STORE_get0_param
-returns an internal pointer to the verification parameter object
-contained in the
-.Fa store .
-The returned pointer must not be freed by the calling application.
-.Pp
-.Fn X509_STORE_get1_objects
-returns a newly allocated stack containing
-the certificates, revocation lists, and private keys in
-.Fa store ,
-as well as cached objects added by
-.Xr X509_LOOKUP_hash_dir 3 .
-The caller must release the result with
-.Xr sk_pop_free 3
-and
-.Xr X509_OBJECT_free 3
-when done.
-.Pp
-.Fn X509_STORE_get0_objects
-is a deprecated function returning an internal pointer to
-the stack of certificates, revocation lists, and private keys contained in
-.Fa store .
-The returned pointer must not be modified or freed by the calling application.
-This function is not thread-safe.
-If
-.Fa store
-is shared across multiple threads, callers cannot safely inspect the result of
-this function, because another thread may have concurrently added to it.
-In particular,
-.Xr X509_LOOKUP_hash_dir 3
-treats this list as a cache and may add to it in the course of certificate
-verification.
-.Pp
-.Fn X509_STORE_get_ex_new_index
-returns a new index or \-1 on failure.
-.Pp
-.Fn X509_STORE_get_ex_data
-returns the application data or
-.Dv NULL
-on failure.
-.Sh SEE ALSO
-.Xr RSA_get_ex_new_index 3 ,
-.Xr SSL_set1_param 3 ,
-.Xr X509_LOOKUP_new 3 ,
-.Xr X509_OBJECT_get0_X509 3 ,
-.Xr X509_STORE_CTX_set0_param 3 ,
-.Xr X509_STORE_load_locations 3 ,
-.Xr X509_STORE_new 3 ,
-.Xr X509_VERIFY_PARAM_new 3 ,
-.Xr X509_VERIFY_PARAM_set_flags 3
-.Sh HISTORY
-.Fn X509_STORE_add_cert
-first appeared in SSLeay 0.8.0.
-.Fn X509_STORE_add_crl
-first appeared in SSLeay 0.9.0.
-These functions have been available since
-.Ox 2.4 .
-.Pp
-.Fn X509_STORE_set_flags ,
-.Fn X509_STORE_set_purpose ,
-and
-.Fn X509_STORE_set_trust
-first appeared in OpenSSL 0.9.7 and have been available since
-.Ox 3.2 .
-.Pp
-.Fn X509_STORE_set1_param
-and
-.Fn X509_STORE_set_depth
-first appeared in OpenSSL 0.9.8 and have been available since
-.Ox 4.5 .
-.Pp
-.Fn X509_STORE_get0_param ,
-.Fn X509_STORE_get0_objects ,
-.Fn X509_STORE_get_ex_new_index ,
-.Fn X509_STORE_set_ex_data ,
-and
-.Fn X509_STORE_get_ex_data
-first appeared in OpenSSL 1.1.0 and have been available since
-.Ox 6.3 .
-.Pp
-.Fn X509_STORE_get1_objects
-first appeared in BoringSSL and has been available since
-.Ox 7.5 .

diff --git a/src/lib/libcrypto/man/X509_STORE_set1_param.3 b/src/lib/libcrypto/man/X509_STORE_set1_param.3 deleted file mode 100644 index 527fe652e5..0000000000 --- a/src/lib/libcrypto/man/X509_STORE_set1_param.3 +++ /dev/null
@@ -1,268 +0,0 @@
1	.\" $OpenBSD: X509_STORE_set1_param.3,v 1.22 2024/03/14 22:19:12 tb Exp $
2	.\" content checked up to:
3	.\" OpenSSL man3/X509_STORE_add_cert b0edda11 Mar 20 13:00:17 2018 +0000
4	.\" OpenSSL man3/X509_STORE_get0_param e90fc053 Jul 15 09:39:45 2017 -0400
5	.\"
6	.\" Copyright (c) 2018 Ingo Schwarze <schwarze@openbsd.org>
7	.\"
8	.\" Permission to use, copy, modify, and distribute this software for any
9	.\" purpose with or without fee is hereby granted, provided that the above
10	.\" copyright notice and this permission notice appear in all copies.
11	.\"
12	.\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
13	.\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
14	.\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
15	.\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
16	.\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
17	.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
18	.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
19	.\"
20	.Dd $Mdocdate: March 14 2024 $
21	.Dt X509_STORE_SET1_PARAM 3
22	.Os
23	.Sh NAME
24	.Nm X509_STORE_set1_param ,
25	.Nm X509_STORE_set_flags ,
26	.Nm X509_STORE_set_purpose ,
27	.Nm X509_STORE_set_trust ,
28	.Nm X509_STORE_set_depth ,
29	.Nm X509_STORE_add_cert ,
30	.Nm X509_STORE_add_crl ,
31	.Nm X509_STORE_get0_param ,
32	.Nm X509_STORE_get1_objects ,
33	.Nm X509_STORE_get0_objects ,
34	.Nm X509_STORE_get_ex_new_index ,
35	.Nm X509_STORE_set_ex_data ,
36	.Nm X509_STORE_get_ex_data
37	.Nd get and set X509_STORE data
38	.Sh SYNOPSIS
39	.In openssl/x509_vfy.h
40	.Ft int
41	.Fo X509_STORE_set1_param
42	.Fa "X509_STORE *store"
43	.Fa "X509_VERIFY_PARAM *pm"
44	.Fc
45	.Ft int
46	.Fo X509_STORE_set_flags
47	.Fa "X509_STORE *store"
48	.Fa "unsigned long flags"
49	.Fc
50	.Ft int
51	.Fo X509_STORE_set_purpose
52	.Fa "X509_STORE *store"
53	.Fa "int purpose"
54	.Fc
55	.Ft int
56	.Fo X509_STORE_set_trust
57	.Fa "X509_STORE *store"
58	.Fa "int trust"
59	.Fc
60	.Ft int
61	.Fo X509_STORE_set_depth
62	.Fa "X509_STORE *store"
63	.Fa "int depth"
64	.Fc
65	.Ft int
66	.Fo X509_STORE_add_cert
67	.Fa "X509_STORE *store"
68	.Fa "X509 *x"
69	.Fc
70	.Ft int
71	.Fo X509_STORE_add_crl
72	.Fa "X509_STORE *store"
73	.Fa "X509_CRL *crl"
74	.Fc
75	.Ft X509_VERIFY_PARAM *
76	.Fo X509_STORE_get0_param
77	.Fa "X509_STORE *store"
78	.Fc
79	.Ft STACK_OF(X509_OBJECT) *
80	.Fo X509_STORE_get1_objects
81	.Fa "X509_STORE *store"
82	.Fc
83	.Ft STACK_OF(X509_OBJECT) *
84	.Fo X509_STORE_get0_objects
85	.Fa "X509_STORE *store"
86	.Fc
87	.Ft int
88	.Fo X509_STORE_get_ex_new_index
89	.Fa "long argl"
90	.Fa "void *argp"
91	.Fa "CRYPTO_EX_new *new_func"
92	.Fa "CRYPTO_EX_dup *dup_func"
93	.Fa "CRYPTO_EX_free *free_func"
94	.Fc
95	.Ft int
96	.Fo X509_STORE_set_ex_data
97	.Fa "X509_STORE *store"
98	.Fa "int idx"
99	.Fa "void *arg"
100	.Fc
101	.Ft void *
102	.Fo X509_STORE_get_ex_data
103	.Fa "X509_STORE *store"
104	.Fa "int idx"
105	.Fc
106	.Sh DESCRIPTION
107	.Fn X509_STORE_set1_param
108	copies the verification parameters from
109	.Fa pm
110	using
111	.Xr X509_VERIFY_PARAM_set1 3
112	into the verification parameter object contained in the
113	.Fa store .
114	.Pp
115	.Fn X509_VERIFY_PARAM_set_flags ,
116	.Fn X509_STORE_set_purpose ,
117	.Fn X509_STORE_set_trust ,
118	and
119	.Fn X509_STORE_set_depth
120	call
121	.Fn X509_VERIFY_PARAM_set_flags ,
122	.Fn X509_VERIFY_PARAM_set_purpose ,
123	.Fn X509_VERIFY_PARAM_set_trust ,
124	and
125	.Fn X509_VERIFY_PARAM_set_depth
126	on the verification parameter object contained in the
127	.Fa store .
128	.Pp
129	.Fn X509_STORE_add_cert
130	and
131	.Fn X509_STORE_add_crl
132	add the certificate
133	.Fa x
134	or the certificate revocation list
135	.Fa crl
136	to the
137	.Fa store ,
138	increasing its reference count by 1 in case of success.
139	Untrusted objects should not be added in this way.
140	.Pp
141	.Fn X509_STORE_get_ex_new_index ,
142	.Fn X509_STORE_set_ex_data ,
143	and
144	.Fn X509_STORE_get_ex_data
145	handle application specific data in
146	.Vt X509_STORE
147	objects.
148	Their usage is identical to that of
149	.Xr RSA_get_ex_new_index 3 ,
150	.Xr RSA_set_ex_data 3 ,
151	and
152	.Xr RSA_get_ex_data 3 .
153	.Fn X509_STORE_get_ex_new_index
154	is implemented as a macro.
155	.Sh RETURN VALUES
156	.Fn X509_STORE_set1_param ,
157	.Fn X509_STORE_set_purpose ,
158	.Fn X509_STORE_set_trust ,
159	and
160	.Fn X509_STORE_set_ex_data
161	return 1 for success or 0 for failure.
162	.Pp
163	.Fn X509_STORE_set_flags
164	and
165	.Fn X509_STORE_set_depth
166	always return 1, indicating success.
167	.Pp
168	.Fn X509_STORE_add_cert
169	and
170	.Fn X509_STORE_add_crl
171	return 1 for success or 0 for failure.
172	For example, they fail if
173	.Fa x
174	or
175	.Fa crl
176	is a
177	.Dv NULL
178	pointer, if a certificate with the same subject name as
179	.Fa x
180	or a revocation list with the same issuer name as
181	.Fa crl
182	are already contained in the
183	.Fa store ,
184	or if memory allocation fails.
185	.Pp
186	.Fn X509_STORE_get0_param
187	returns an internal pointer to the verification parameter object
188	contained in the
189	.Fa store .
190	The returned pointer must not be freed by the calling application.
191	.Pp
192	.Fn X509_STORE_get1_objects
193	returns a newly allocated stack containing
194	the certificates, revocation lists, and private keys in
195	.Fa store ,
196	as well as cached objects added by
197	.Xr X509_LOOKUP_hash_dir 3 .
198	The caller must release the result with
199	.Xr sk_pop_free 3
200	and
201	.Xr X509_OBJECT_free 3
202	when done.
203	.Pp
204	.Fn X509_STORE_get0_objects
205	is a deprecated function returning an internal pointer to
206	the stack of certificates, revocation lists, and private keys contained in
207	.Fa store .
208	The returned pointer must not be modified or freed by the calling application.
209	This function is not thread-safe.
210	If
211	.Fa store
212	is shared across multiple threads, callers cannot safely inspect the result of
213	this function, because another thread may have concurrently added to it.
214	In particular,
215	.Xr X509_LOOKUP_hash_dir 3
216	treats this list as a cache and may add to it in the course of certificate
217	verification.
218	.Pp
219	.Fn X509_STORE_get_ex_new_index
220	returns a new index or \-1 on failure.
221	.Pp
222	.Fn X509_STORE_get_ex_data
223	returns the application data or
224	.Dv NULL
225	on failure.
226	.Sh SEE ALSO
227	.Xr RSA_get_ex_new_index 3 ,
228	.Xr SSL_set1_param 3 ,
229	.Xr X509_LOOKUP_new 3 ,
230	.Xr X509_OBJECT_get0_X509 3 ,
231	.Xr X509_STORE_CTX_set0_param 3 ,
232	.Xr X509_STORE_load_locations 3 ,
233	.Xr X509_STORE_new 3 ,
234	.Xr X509_VERIFY_PARAM_new 3 ,
235	.Xr X509_VERIFY_PARAM_set_flags 3
236	.Sh HISTORY
237	.Fn X509_STORE_add_cert
238	first appeared in SSLeay 0.8.0.
239	.Fn X509_STORE_add_crl
240	first appeared in SSLeay 0.9.0.
241	These functions have been available since
242	.Ox 2.4 .
243	.Pp
244	.Fn X509_STORE_set_flags ,
245	.Fn X509_STORE_set_purpose ,
246	and
247	.Fn X509_STORE_set_trust
248	first appeared in OpenSSL 0.9.7 and have been available since
249	.Ox 3.2 .
250	.Pp
251	.Fn X509_STORE_set1_param
252	and
253	.Fn X509_STORE_set_depth
254	first appeared in OpenSSL 0.9.8 and have been available since
255	.Ox 4.5 .
256	.Pp
257	.Fn X509_STORE_get0_param ,
258	.Fn X509_STORE_get0_objects ,
259	.Fn X509_STORE_get_ex_new_index ,
260	.Fn X509_STORE_set_ex_data ,
261	and
262	.Fn X509_STORE_get_ex_data
263	first appeared in OpenSSL 1.1.0 and have been available since
264	.Ox 6.3 .
265	.Pp
266	.Fn X509_STORE_get1_objects
267	first appeared in BoringSSL and has been available since
268	.Ox 7.5 .