5 files changed, 5 insertions, 84 deletions
diff --git a/src/lib/libcrypto/Symbols.list b/src/lib/libcrypto/Symbols.list
index 10562c675a..2c411b3565 100644
--- a/src/lib/libcrypto/Symbols.list
+++ b/src/lib/libcrypto/Symbols.list
@@ -2619,18 +2619,11 @@ X509_EXTENSION_set_data
 X509_EXTENSION_set_object
 X509_INFO_free
 X509_INFO_new
-X509_LOOKUP_by_alias
-X509_LOOKUP_by_fingerprint
-X509_LOOKUP_by_issuer_serial
-X509_LOOKUP_by_subject
 X509_LOOKUP_ctrl
 X509_LOOKUP_file
 X509_LOOKUP_free
 X509_LOOKUP_hash_dir
-X509_LOOKUP_init
 X509_LOOKUP_mem
-X509_LOOKUP_new
-X509_LOOKUP_shutdown
 X509_NAME_ENTRIES_it
 X509_NAME_ENTRY_create_by_NID
 X509_NAME_ENTRY_create_by_OBJ
diff --git a/src/lib/libcrypto/Symbols.namespace b/src/lib/libcrypto/Symbols.namespace
index d9590797dc..aa81bc13f2 100644
--- a/src/lib/libcrypto/Symbols.namespace
+++ b/src/lib/libcrypto/Symbols.namespace
@@ -517,14 +517,7 @@ _libre_X509_LOOKUP_ctrl
 _libre_X509_load_cert_file
 _libre_X509_load_crl_file
 _libre_X509_load_cert_crl_file
-_libre_X509_LOOKUP_new
 _libre_X509_LOOKUP_free
-_libre_X509_LOOKUP_init
-_libre_X509_LOOKUP_by_subject
-_libre_X509_LOOKUP_by_issuer_serial
-_libre_X509_LOOKUP_by_fingerprint
-_libre_X509_LOOKUP_by_alias
-_libre_X509_LOOKUP_shutdown
 _libre_X509_STORE_load_locations
 _libre_X509_STORE_load_mem
 _libre_X509_STORE_set_default_paths
diff --git a/src/lib/libcrypto/hidden/openssl/x509_vfy.h b/src/lib/libcrypto/hidden/openssl/x509_vfy.h
index 88d8b143df..3d65837a48 100644
--- a/src/lib/libcrypto/hidden/openssl/x509_vfy.h
+++ b/src/lib/libcrypto/hidden/openssl/x509_vfy.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: x509_vfy.h,v 1.8 2024/03/02 10:40:05 tb Exp $ */
+/* $OpenBSD: x509_vfy.h,v 1.9 2024/03/02 10:57:03 tb Exp $ */
 /*
 * Copyright (c) 2022 Bob Beck <beck@openbsd.org>
 *
@@ -79,14 +79,7 @@ LCRYPTO_USED(X509_LOOKUP_ctrl);
 LCRYPTO_USED(X509_load_cert_file);
 LCRYPTO_USED(X509_load_crl_file);
 LCRYPTO_USED(X509_load_cert_crl_file);
-LCRYPTO_USED(X509_LOOKUP_new);
 LCRYPTO_USED(X509_LOOKUP_free);
-LCRYPTO_USED(X509_LOOKUP_init);
-LCRYPTO_USED(X509_LOOKUP_by_subject);
-LCRYPTO_USED(X509_LOOKUP_by_issuer_serial);
-LCRYPTO_USED(X509_LOOKUP_by_fingerprint);
-LCRYPTO_USED(X509_LOOKUP_by_alias);
-LCRYPTO_USED(X509_LOOKUP_shutdown);
 LCRYPTO_USED(X509_STORE_load_locations);
 LCRYPTO_USED(X509_STORE_load_mem);
 LCRYPTO_USED(X509_STORE_set_default_paths);
diff --git a/src/lib/libcrypto/x509/x509_lu.c b/src/lib/libcrypto/x509/x509_lu.c
index 7e7a5dedd0..56fb439996 100644
--- a/src/lib/libcrypto/x509/x509_lu.c
+++ b/src/lib/libcrypto/x509/x509_lu.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: x509_lu.c,v 1.63 2024/02/23 10:39:07 tb Exp $ */
+/* $OpenBSD: x509_lu.c,v 1.64 2024/03/02 10:57:03 tb Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -65,7 +65,7 @@
 #include <openssl/x509v3.h>
 #include "x509_local.h"
-X509_LOOKUP *
+static X509_LOOKUP *
 X509_LOOKUP_new(X509_LOOKUP_METHOD *method)
 {
        X509_LOOKUP *lu;
@@ -84,7 +84,6 @@ X509_LOOKUP_new(X509_LOOKUP_METHOD *method)
        return lu;
 }
-LCRYPTO_ALIAS(X509_LOOKUP_new);
 void
 X509_LOOKUP_free(X509_LOOKUP *ctx)
@@ -98,26 +97,6 @@ X509_LOOKUP_free(X509_LOOKUP *ctx)
 LCRYPTO_ALIAS(X509_LOOKUP_free);
 int
-X509_LOOKUP_init(X509_LOOKUP *ctx)
-{
-        if (ctx->method == NULL)
-                return 0;
-        /* Historical behavior: make init succeed even without method. */
-        return 1;
-}
-LCRYPTO_ALIAS(X509_LOOKUP_init);
-int
-X509_LOOKUP_shutdown(X509_LOOKUP *ctx)
-{
-        if (ctx->method == NULL)
-                return 0;
-        /* Historical behavior: make shutdown succeed even without method. */
-        return 1;
-}
-LCRYPTO_ALIAS(X509_LOOKUP_shutdown);
-int
 X509_LOOKUP_ctrl(X509_LOOKUP *ctx, int cmd, const char *argc, long argl,
    char **ret)
 {
@@ -129,7 +108,7 @@ X509_LOOKUP_ctrl(X509_LOOKUP *ctx, int cmd, const char *argc, long argl,
 }
 LCRYPTO_ALIAS(X509_LOOKUP_ctrl);
-int
+static int
 X509_LOOKUP_by_subject(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type, X509_NAME *name,
    X509_OBJECT *ret)
 {
@@ -137,31 +116,6 @@ X509_LOOKUP_by_subject(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type, X509_NAME *name,
                return 0;
        return ctx->method->get_by_subject(ctx, type, name, ret);
 }
-LCRYPTO_ALIAS(X509_LOOKUP_by_subject);
-int
-X509_LOOKUP_by_issuer_serial(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
-    X509_NAME *name, ASN1_INTEGER *serial, X509_OBJECT *ret)
-{
-        return 0;
-}
-LCRYPTO_ALIAS(X509_LOOKUP_by_issuer_serial);
-int
-X509_LOOKUP_by_fingerprint(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
-    const unsigned char *bytes, int len, X509_OBJECT *ret)
-{
-        return 0;
-}
-LCRYPTO_ALIAS(X509_LOOKUP_by_fingerprint);
-int
-X509_LOOKUP_by_alias(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type, const char *str,
-    int len, X509_OBJECT *ret)
-{
-        return 0;
-}
-LCRYPTO_ALIAS(X509_LOOKUP_by_alias);
 static int
 x509_object_cmp(const X509_OBJECT * const *a, const X509_OBJECT * const *b)
diff --git a/src/lib/libcrypto/x509/x509_vfy.h b/src/lib/libcrypto/x509/x509_vfy.h
index 6474d5238a..755a064353 100644
--- a/src/lib/libcrypto/x509/x509_vfy.h
+++ b/src/lib/libcrypto/x509/x509_vfy.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: x509_vfy.h,v 1.67 2024/03/02 10:54:39 tb Exp $ */
+/* $OpenBSD: x509_vfy.h,v 1.68 2024/03/02 10:57:03 tb Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -363,19 +363,7 @@ int X509_load_cert_file(X509_LOOKUP *ctx, const char *file, int type);
 int X509_load_crl_file(X509_LOOKUP *ctx, const char *file, int type);
 int X509_load_cert_crl_file(X509_LOOKUP *ctx, const char *file, int type);
-X509_LOOKUP *X509_LOOKUP_new(X509_LOOKUP_METHOD *method);
 void X509_LOOKUP_free(X509_LOOKUP *ctx);
-int X509_LOOKUP_init(X509_LOOKUP *ctx);
-int X509_LOOKUP_by_subject(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
-    X509_NAME *name, X509_OBJECT *ret);
-int X509_LOOKUP_by_issuer_serial(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
-    X509_NAME *name, ASN1_INTEGER *serial, X509_OBJECT *ret);
-int X509_LOOKUP_by_fingerprint(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
-    const unsigned char *bytes, int len, X509_OBJECT *ret);
-int X509_LOOKUP_by_alias(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
-    const char *str, int len, X509_OBJECT *ret);
-int X509_LOOKUP_shutdown(X509_LOOKUP *ctx);
 int     X509_STORE_load_locations(X509_STORE *ctx,
                const char *file, const char *dir);

diff --git a/src/lib/libcrypto/Symbols.list b/src/lib/libcrypto/Symbols.list index 10562c675a..2c411b3565 100644 --- a/src/lib/libcrypto/Symbols.list +++ b/src/lib/libcrypto/Symbols.list
@@ -2619,18 +2619,11 @@ X509_EXTENSION_set_data
2619	X509_EXTENSION_set_object	2619	X509_EXTENSION_set_object
2620	X509_INFO_free	2620	X509_INFO_free
2621	X509_INFO_new	2621	X509_INFO_new
2622	X509_LOOKUP_by_alias
2623	X509_LOOKUP_by_fingerprint
2624	X509_LOOKUP_by_issuer_serial
2625	X509_LOOKUP_by_subject
2626	X509_LOOKUP_ctrl	2622	X509_LOOKUP_ctrl
2627	X509_LOOKUP_file	2623	X509_LOOKUP_file
2628	X509_LOOKUP_free	2624	X509_LOOKUP_free
2629	X509_LOOKUP_hash_dir	2625	X509_LOOKUP_hash_dir
2630	X509_LOOKUP_init
2631	X509_LOOKUP_mem	2626	X509_LOOKUP_mem
2632	X509_LOOKUP_new
2633	X509_LOOKUP_shutdown
2634	X509_NAME_ENTRIES_it	2627	X509_NAME_ENTRIES_it
2635	X509_NAME_ENTRY_create_by_NID	2628	X509_NAME_ENTRY_create_by_NID
2636	X509_NAME_ENTRY_create_by_OBJ	2629	X509_NAME_ENTRY_create_by_OBJ


diff --git a/src/lib/libcrypto/Symbols.namespace b/src/lib/libcrypto/Symbols.namespace index d9590797dc..aa81bc13f2 100644 --- a/src/lib/libcrypto/Symbols.namespace +++ b/src/lib/libcrypto/Symbols.namespace
@@ -517,14 +517,7 @@ _libre_X509_LOOKUP_ctrl
517	_libre_X509_load_cert_file	517	_libre_X509_load_cert_file
518	_libre_X509_load_crl_file	518	_libre_X509_load_crl_file
519	_libre_X509_load_cert_crl_file	519	_libre_X509_load_cert_crl_file
520	_libre_X509_LOOKUP_new
521	_libre_X509_LOOKUP_free	520	_libre_X509_LOOKUP_free
522	_libre_X509_LOOKUP_init
523	_libre_X509_LOOKUP_by_subject
524	_libre_X509_LOOKUP_by_issuer_serial
525	_libre_X509_LOOKUP_by_fingerprint
526	_libre_X509_LOOKUP_by_alias
527	_libre_X509_LOOKUP_shutdown
528	_libre_X509_STORE_load_locations	521	_libre_X509_STORE_load_locations
529	_libre_X509_STORE_load_mem	522	_libre_X509_STORE_load_mem
530	_libre_X509_STORE_set_default_paths	523	_libre_X509_STORE_set_default_paths


diff --git a/src/lib/libcrypto/hidden/openssl/x509_vfy.h b/src/lib/libcrypto/hidden/openssl/x509_vfy.h index 88d8b143df..3d65837a48 100644 --- a/src/lib/libcrypto/hidden/openssl/x509_vfy.h +++ b/src/lib/libcrypto/hidden/openssl/x509_vfy.h
@@ -1,4 +1,4 @@
1	/* $OpenBSD: x509_vfy.h,v 1.8 2024/03/02 10:40:05 tb Exp $ */	1	/* $OpenBSD: x509_vfy.h,v 1.9 2024/03/02 10:57:03 tb Exp $ */
2	/*	2	/*
3	* Copyright (c) 2022 Bob Beck <beck@openbsd.org>	3	* Copyright (c) 2022 Bob Beck <beck@openbsd.org>
4	*	4	*
@@ -79,14 +79,7 @@ LCRYPTO_USED(X509_LOOKUP_ctrl);
79	LCRYPTO_USED(X509_load_cert_file);	79	LCRYPTO_USED(X509_load_cert_file);
80	LCRYPTO_USED(X509_load_crl_file);	80	LCRYPTO_USED(X509_load_crl_file);
81	LCRYPTO_USED(X509_load_cert_crl_file);	81	LCRYPTO_USED(X509_load_cert_crl_file);
82	LCRYPTO_USED(X509_LOOKUP_new);
83	LCRYPTO_USED(X509_LOOKUP_free);	82	LCRYPTO_USED(X509_LOOKUP_free);
84	LCRYPTO_USED(X509_LOOKUP_init);
85	LCRYPTO_USED(X509_LOOKUP_by_subject);
86	LCRYPTO_USED(X509_LOOKUP_by_issuer_serial);
87	LCRYPTO_USED(X509_LOOKUP_by_fingerprint);
88	LCRYPTO_USED(X509_LOOKUP_by_alias);
89	LCRYPTO_USED(X509_LOOKUP_shutdown);
90	LCRYPTO_USED(X509_STORE_load_locations);	83	LCRYPTO_USED(X509_STORE_load_locations);
91	LCRYPTO_USED(X509_STORE_load_mem);	84	LCRYPTO_USED(X509_STORE_load_mem);
92	LCRYPTO_USED(X509_STORE_set_default_paths);	85	LCRYPTO_USED(X509_STORE_set_default_paths);


diff --git a/src/lib/libcrypto/x509/x509_lu.c b/src/lib/libcrypto/x509/x509_lu.c index 7e7a5dedd0..56fb439996 100644 --- a/src/lib/libcrypto/x509/x509_lu.c +++ b/src/lib/libcrypto/x509/x509_lu.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: x509_lu.c,v 1.63 2024/02/23 10:39:07 tb Exp $ */	1	/* $OpenBSD: x509_lu.c,v 1.64 2024/03/02 10:57:03 tb Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -65,7 +65,7 @@
65	#include <openssl/x509v3.h>	65	#include <openssl/x509v3.h>
66	#include "x509_local.h"	66	#include "x509_local.h"
67		67
68	X509_LOOKUP *	68	static X509_LOOKUP *
69	X509_LOOKUP_new(X509_LOOKUP_METHOD *method)	69	X509_LOOKUP_new(X509_LOOKUP_METHOD *method)
70	{	70	{
71	X509_LOOKUP *lu;	71	X509_LOOKUP *lu;
@@ -84,7 +84,6 @@ X509_LOOKUP_new(X509_LOOKUP_METHOD *method)
84		84
85	return lu;	85	return lu;
86	}	86	}
87	LCRYPTO_ALIAS(X509_LOOKUP_new);
88		87
89	void	88	void
90	X509_LOOKUP_free(X509_LOOKUP *ctx)	89	X509_LOOKUP_free(X509_LOOKUP *ctx)
@@ -98,26 +97,6 @@ X509_LOOKUP_free(X509_LOOKUP *ctx)
98	LCRYPTO_ALIAS(X509_LOOKUP_free);	97	LCRYPTO_ALIAS(X509_LOOKUP_free);
99		98
100	int	99	int
101	X509_LOOKUP_init(X509_LOOKUP *ctx)
102	{
103	if (ctx->method == NULL)
104	return 0;
105	/* Historical behavior: make init succeed even without method. */
106	return 1;
107	}
108	LCRYPTO_ALIAS(X509_LOOKUP_init);
109
110	int
111	X509_LOOKUP_shutdown(X509_LOOKUP *ctx)
112	{
113	if (ctx->method == NULL)
114	return 0;
115	/* Historical behavior: make shutdown succeed even without method. */
116	return 1;
117	}
118	LCRYPTO_ALIAS(X509_LOOKUP_shutdown);
119
120	int
121	X509_LOOKUP_ctrl(X509_LOOKUP ctx, int cmd, const char argc, long argl,	100	X509_LOOKUP_ctrl(X509_LOOKUP ctx, int cmd, const char argc, long argl,
122	char **ret)	101	char **ret)
123	{	102	{
@@ -129,7 +108,7 @@ X509_LOOKUP_ctrl(X509_LOOKUP ctx, int cmd, const char argc, long argl,
129	}	108	}
130	LCRYPTO_ALIAS(X509_LOOKUP_ctrl);	109	LCRYPTO_ALIAS(X509_LOOKUP_ctrl);
131		110
132	int	111	static int
133	X509_LOOKUP_by_subject(X509_LOOKUP ctx, X509_LOOKUP_TYPE type, X509_NAME name,	112	X509_LOOKUP_by_subject(X509_LOOKUP ctx, X509_LOOKUP_TYPE type, X509_NAME name,
134	X509_OBJECT *ret)	113	X509_OBJECT *ret)
135	{	114	{
@@ -137,31 +116,6 @@ X509_LOOKUP_by_subject(X509_LOOKUP ctx, X509_LOOKUP_TYPE type, X509_NAME name,
137	return 0;	116	return 0;
138	return ctx->method->get_by_subject(ctx, type, name, ret);	117	return ctx->method->get_by_subject(ctx, type, name, ret);
139	}	118	}
140	LCRYPTO_ALIAS(X509_LOOKUP_by_subject);
141
142	int
143	X509_LOOKUP_by_issuer_serial(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
144	X509_NAME name, ASN1_INTEGER serial, X509_OBJECT *ret)
145	{
146	return 0;
147	}
148	LCRYPTO_ALIAS(X509_LOOKUP_by_issuer_serial);
149
150	int
151	X509_LOOKUP_by_fingerprint(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
152	const unsigned char bytes, int len, X509_OBJECT ret)
153	{
154	return 0;
155	}
156	LCRYPTO_ALIAS(X509_LOOKUP_by_fingerprint);
157
158	int
159	X509_LOOKUP_by_alias(X509_LOOKUP ctx, X509_LOOKUP_TYPE type, const char str,
160	int len, X509_OBJECT *ret)
161	{
162	return 0;
163	}
164	LCRYPTO_ALIAS(X509_LOOKUP_by_alias);
165		119
166	static int	120	static int
167	x509_object_cmp(const X509_OBJECT * const a, const X509_OBJECT const *b)	121	x509_object_cmp(const X509_OBJECT * const a, const X509_OBJECT const *b)


diff --git a/src/lib/libcrypto/x509/x509_vfy.h b/src/lib/libcrypto/x509/x509_vfy.h index 6474d5238a..755a064353 100644 --- a/src/lib/libcrypto/x509/x509_vfy.h +++ b/src/lib/libcrypto/x509/x509_vfy.h
@@ -1,4 +1,4 @@
1	/* $OpenBSD: x509_vfy.h,v 1.67 2024/03/02 10:54:39 tb Exp $ */	1	/* $OpenBSD: x509_vfy.h,v 1.68 2024/03/02 10:57:03 tb Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -363,19 +363,7 @@ int X509_load_cert_file(X509_LOOKUP ctx, const char file, int type);
363	int X509_load_crl_file(X509_LOOKUP ctx, const char file, int type);	363	int X509_load_crl_file(X509_LOOKUP ctx, const char file, int type);
364	int X509_load_cert_crl_file(X509_LOOKUP ctx, const char file, int type);	364	int X509_load_cert_crl_file(X509_LOOKUP ctx, const char file, int type);
365		365
366
367	X509_LOOKUP X509_LOOKUP_new(X509_LOOKUP_METHOD method);
368	void X509_LOOKUP_free(X509_LOOKUP *ctx);	366	void X509_LOOKUP_free(X509_LOOKUP *ctx);
369	int X509_LOOKUP_init(X509_LOOKUP *ctx);
370	int X509_LOOKUP_by_subject(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
371	X509_NAME name, X509_OBJECT ret);
372	int X509_LOOKUP_by_issuer_serial(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
373	X509_NAME name, ASN1_INTEGER serial, X509_OBJECT *ret);
374	int X509_LOOKUP_by_fingerprint(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
375	const unsigned char bytes, int len, X509_OBJECT ret);
376	int X509_LOOKUP_by_alias(X509_LOOKUP *ctx, X509_LOOKUP_TYPE type,
377	const char str, int len, X509_OBJECT ret);
378	int X509_LOOKUP_shutdown(X509_LOOKUP *ctx);
379		367
380	int X509_STORE_load_locations(X509_STORE *ctx,	368	int X509_STORE_load_locations(X509_STORE *ctx,
381	const char file, const char dir);	369	const char file, const char dir);