Skip Menu |
 

This queue is for tickets about the Net-SSLeay CPAN distribution.

Report information
The Basics
Id: 41427
Status: resolved
Priority: 0/
Queue: Net-SSLeay

People
Owner: MIKEM [...] cpan.org
Requestors: js [...] joergschneider.com
Cc:
AdminCc:

Bug Information
Severity: Wishlist
Broken in: 1.35
Fixed in: (no value)

Attachments


Subject: Add SSL*_get_client_CA_list and sk_X509_NAME_* functions / patch included
Download (untitled) / with headers
text/plain 476b
While Net::SSLeay can set the client_CA_list, it currently cannot retrieve this list. Reading the client_CA_list can be useful e.g. to determine on the client end the CAs configured on the server side. The included patch adds the following SSL functions to Net::SSLeay: SSL_CTX_get_client_CA_list SSL_get_client_CA_list sk_X509_NAME_free sk_X509_NAME_num sk_X509_NAME_value I'm willing to create a patch to document the new functions in SSLeay.pm if that is desirable.
Subject: Net-SSLeay-1.35_get_client_CA_list.diff
diff -ur Net-SSLeay-1.35-orig/SSLeay.xs Net-SSLeay-1.35/SSLeay.xs --- Net-SSLeay-1.35-orig/SSLeay.xs 2008-07-24 03:03:22.000000000 +0200 +++ Net-SSLeay-1.35/SSLeay.xs 2008-10-23 13:01:03.000000000 +0200 @@ -1978,6 +1978,10 @@ SSL_CTX_set_cert_verify_callback(ctx, ssleay_ctx_cert_verify_cb_invoke, cb); } +X509_NAME_STACK * +SSL_CTX_get_client_CA_list(ctx) + SSL_CTX *ctx + void SSL_CTX_set_client_CA_list(ctx,list) SSL_CTX * ctx @@ -2167,6 +2171,23 @@ SSL_set_accept_state(s) SSL * s +void +sk_X509_NAME_free(sk) + X509_NAME_STACK *sk + +int +sk_X509_NAME_num(sk) + X509_NAME_STACK *sk + +X509_NAME * +sk_X509_NAME_value(sk,i) + X509_NAME_STACK *sk + int i + +X509_NAME_STACK * +SSL_get_client_CA_list(s) + SSL * s + void SSL_set_client_CA_list(s,list) SSL * s
Download (untitled) / with headers
text/plain 695b
On Thu Dec 04 08:10:43 2008, http://joergschneider.com/id/ wrote: Show quoted text
> While Net::SSLeay can set the client_CA_list, it currently cannot > retrieve this list. > > Reading the client_CA_list can be useful e.g. to determine on the
client Show quoted text
> end the CAs configured on the server side. > > The included patch adds the following SSL functions to Net::SSLeay:
This patch has now been added to the SVN. Thank you. Show quoted text
> > SSL_CTX_get_client_CA_list > SSL_get_client_CA_list > > sk_X509_NAME_free > sk_X509_NAME_num > sk_X509_NAME_value > > I'm willing to create a patch to document the new functions in
SSLeay.pm Show quoted text
> if that is desirable.
Yes, that would be very helpful. Please do that. Cheers.


This service is sponsored and maintained by Best Practical Solutions and runs on Perl.org infrastructure.

Please report any issues with rt.cpan.org to rt-cpan-admin@bestpractical.com.