diff options
author | David Benjamin <davidben@chromium.org> | 2014-10-29 01:36:00 +0300 |
---|---|---|
committer | Adam Langley <agl@google.com> | 2014-10-29 01:38:38 +0300 |
commit | b06711ca34a0f11d345bf35e07e1a2d0c068ab9e (patch) | |
tree | 31058ebe7c44670e4c0405f1ffbcc0c80118b7ab /crypto/x509 | |
parent | e1679761261c45381364fe35701f67de783a527d (diff) |
Move the X509_NAME typedef into x509.h.
X509_NAME is one of the symbols that collide with wincrypt.h. Move it to x509.h
so libraries which only use the pure-crypto portions of BoringSSL without X.509
needn't have to resolve the collision.
Change-Id: I057873498e58fe4a4cf264356f9a58d7a15397b7
Reviewed-on: https://boringssl-review.googlesource.com/2080
Reviewed-by: Adam Langley <agl@google.com>
Diffstat (limited to 'crypto/x509')
-rw-r--r-- | crypto/x509/x_crl.c | 18 |
1 files changed, 17 insertions, 1 deletions
diff --git a/crypto/x509/x_crl.c b/crypto/x509/x_crl.c index 21785dc7..8e64f76b 100644 --- a/crypto/x509/x_crl.c +++ b/crypto/x509/x_crl.c @@ -64,8 +64,24 @@ #include <openssl/x509.h> #include <openssl/x509v3.h> -#include "../asn1/asn1_locl.h" +/* Method to handle CRL access. + * In general a CRL could be very large (several Mb) and can consume large + * amounts of resources if stored in memory by multiple processes. + * This method allows general CRL operations to be redirected to more + * efficient callbacks: for example a CRL entry database. + */ + +#define X509_CRL_METHOD_DYNAMIC 1 +struct x509_crl_method_st + { + int flags; + int (*crl_init)(X509_CRL *crl); + int (*crl_free)(X509_CRL *crl); + int (*crl_lookup)(X509_CRL *crl, X509_REVOKED **ret, + ASN1_INTEGER *ser, X509_NAME *issuer); + int (*crl_verify)(X509_CRL *crl, EVP_PKEY *pk); + }; static int X509_REVOKED_cmp(const X509_REVOKED **a, const X509_REVOKED **b); |