Add part of chain verify SSL support code: not complete or doing anything yet. Add a function X509_STORE_CTX_purpose_inherit() which implements the logic of "inheriting" purpose and trust from a parent structure and using a default: this will be used in the SSL code and possibly future S/MIME. Partial documentation of the 'verify' utility. Still need to document how all the extension checking works and the various error messages.

commit: 13938acecae8f1b455812d0388e2891abd1c096d [log] [tgz]
author: Dr. Stephen Henson <steve@openssl.org> Mon Nov 29 01:09:25 1999 +0000
committer: Dr. Stephen Henson <steve@openssl.org> Mon Nov 29 01:09:25 1999 +0000
tree: a0c899c89f6126f075ca6b88f15f3134bfe21ebe
parent: 51630a37069a0792f2d6ad6ce33e9c5cca27b69c [diff] [blame]
diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c
index e192fc4..9dd6860 100644
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c

@@ -201,6 +201,8 @@
 	s->verify_mode=ctx->verify_mode;
 	s->verify_depth=ctx->verify_depth;
 	s->verify_callback=ctx->default_verify_callback;
+	s->purpose = ctx->purpose;
+	s->trust = ctx->trust;
 	CRYPTO_add(&ctx->references,1,CRYPTO_LOCK_SSL_CTX);
 	s->ctx=ctx;
commit	13938acecae8f1b455812d0388e2891abd1c096d	[log] [tgz]
author	Dr. Stephen Henson <steve@openssl.org>	Mon Nov 29 01:09:25 1999 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	Mon Nov 29 01:09:25 1999 +0000
tree	a0c899c89f6126f075ca6b88f15f3134bfe21ebe
parent	51630a37069a0792f2d6ad6ce33e9c5cca27b69c [diff] [blame]