You used to be able to define your own X.509 extension handlers. Great.
Even greater: the verifier would ignore any custom extensions. So this
was only ever useful for serialization and deserialization. In other
words, almost entirely pointless. The API was also unused except for
a hack in kore-acme, which was fixed recently.
ok jsing
X509V3_EXT_CRL_add_nconf
X509V3_EXT_REQ_add_conf
X509V3_EXT_REQ_add_nconf
-X509V3_EXT_add
-X509V3_EXT_add_alias
X509V3_EXT_add_conf
-X509V3_EXT_add_list
X509V3_EXT_add_nconf
X509V3_EXT_add_nconf_sk
-X509V3_EXT_cleanup
X509V3_EXT_conf
X509V3_EXT_conf_nid
X509V3_EXT_d2i
_libre_s2i_ASN1_INTEGER
_libre_i2s_ASN1_ENUMERATED
_libre_i2s_ASN1_ENUMERATED_TABLE
-_libre_X509V3_EXT_add
-_libre_X509V3_EXT_add_list
-_libre_X509V3_EXT_add_alias
-_libre_X509V3_EXT_cleanup
_libre_X509V3_EXT_get
_libre_X509V3_EXT_get_nid
_libre_X509V3_add_standard_extensions
-/* $OpenBSD: x509v3.h,v 1.5 2023/07/05 21:14:54 bcook Exp $ */
+/* $OpenBSD: x509v3.h,v 1.6 2024/03/02 10:35:32 tb Exp $ */
/*
* Copyright (c) 2022 Bob Beck <beck@openbsd.org>
*
LCRYPTO_USED(s2i_ASN1_INTEGER);
LCRYPTO_USED(i2s_ASN1_ENUMERATED);
LCRYPTO_USED(i2s_ASN1_ENUMERATED_TABLE);
-LCRYPTO_USED(X509V3_EXT_add);
-LCRYPTO_USED(X509V3_EXT_add_list);
-LCRYPTO_USED(X509V3_EXT_add_alias);
-LCRYPTO_USED(X509V3_EXT_cleanup);
LCRYPTO_USED(X509V3_EXT_get);
LCRYPTO_USED(X509V3_EXT_get_nid);
LCRYPTO_USED(X509V3_add_standard_extensions);
-/* $OpenBSD: x509_lib.c,v 1.16 2024/01/25 15:09:22 tb Exp $ */
+/* $OpenBSD: x509_lib.c,v 1.17 2024/03/02 10:35:32 tb Exp $ */
/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
* project 1999.
*/
return 0;
}
LCRYPTO_ALIAS(X509V3_add1_i2d);
-
-/*
- * XXX - remove all the functions below in the next major bump.
- */
-
-int
-X509V3_EXT_add(X509V3_EXT_METHOD *ext)
-{
- X509V3error(ERR_R_DISABLED);
- return 0;
-}
-LCRYPTO_ALIAS(X509V3_EXT_add);
-
-int
-X509V3_EXT_add_list(X509V3_EXT_METHOD *extlist)
-{
- X509V3error(ERR_R_DISABLED);
- return 0;
-}
-LCRYPTO_ALIAS(X509V3_EXT_add_list);
-
-int
-X509V3_EXT_add_alias(int nid_to, int nid_from)
-{
- X509V3error(ERR_R_DISABLED);
- return 0;
-}
-LCRYPTO_ALIAS(X509V3_EXT_add_alias);
-
-void
-X509V3_EXT_cleanup(void)
-{
-}
-LCRYPTO_ALIAS(X509V3_EXT_cleanup);
-/* $OpenBSD: x509v3.h,v 1.25 2023/06/25 18:15:21 tb Exp $ */
+/* $OpenBSD: x509v3.h,v 1.26 2024/03/02 10:35:32 tb Exp $ */
/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
* project 1999.
*/
char *i2s_ASN1_ENUMERATED(X509V3_EXT_METHOD *meth, const ASN1_ENUMERATED *aint);
char *i2s_ASN1_ENUMERATED_TABLE(X509V3_EXT_METHOD *meth,
const ASN1_ENUMERATED *aint);
-int X509V3_EXT_add(X509V3_EXT_METHOD *ext);
-int X509V3_EXT_add_list(X509V3_EXT_METHOD *extlist);
-int X509V3_EXT_add_alias(int nid_to, int nid_from);
-void X509V3_EXT_cleanup(void);
const X509V3_EXT_METHOD *X509V3_EXT_get(X509_EXTENSION *ext);
const X509V3_EXT_METHOD *X509V3_EXT_get_nid(int nid);
projects / openbsd / commitdiff