commit 51630a37069a0792f2d6ad6ce33e9c5cca27b69c
author Dr. Stephen Henson <steve@openssl.org> Sat Nov 27 19:43:10 1999 +0000
committer Dr. Stephen Henson <steve@openssl.org> Sat Nov 27 19:43:10 1999 +0000
tree 295ee6e11fede84a1ac1cf5404b1c3edfe2e7ba8
parent 74ecf9e2bbff8bb85b8da313b2ea44df487ef550

Add trust setting support to the verify code. It now checks the
trust settings of the root CA.

After a few fixes it seems to work OK.

Still need to add support to SSL and S/MIME code though.

crypto/x509/x509.h

diff --git a/crypto/x509/x509.h b/crypto/x509/x509.h
index 227bbaf..534c3d6 100644
--- a/crypto/x509/x509.h
+++ b/crypto/x509/x509.h
@@ -1098,6 +1098,7 @@
 #define X509_F_X509_REQ_PRINT				 121
 #define X509_F_X509_REQ_PRINT_FP			 122
 #define X509_F_X509_REQ_TO_X509				 123
+#define X509_F_X509_SET_PURPOSE_AND_TRUST		 134
 #define X509_F_X509_STORE_ADD_CERT			 124
 #define X509_F_X509_STORE_ADD_CRL			 125
 #define X509_F_X509_TO_X509_REQ				 126
@@ -1122,6 +1123,7 @@
 #define X509_R_UNABLE_TO_GET_CERTS_PUBLIC_KEY		 108
 #define X509_R_UNKNOWN_KEY_TYPE				 117
 #define X509_R_UNKNOWN_NID				 109
+#define X509_R_UNKNOWN_TRUST_ID				 120
 #define X509_R_UNSUPPORTED_ALGORITHM			 111
 #define X509_R_WRONG_LOOKUP_TYPE			 112