Moving X509_CRL between X509_STOREs
Tomas Mraz
tomas at openssl.org
Mon Apr 22 09:01:34 UTC 2024
You can simply use X509_OBJECT_get0_X509_CRL() to retrieve the X509_CRL
pointer inside the object. It will return NULL if it is not a CRL.
Unfortunately the function is undocumented.
Tomas Mraz, OpenSSL
On Mon, 2024-04-22 at 09:30 +0200, Roman Janota via openssl-users
wrote:
> Hello,
>
> is there a way to move all the X509_CRLs (or all the certs in
> general)
> from one X509_STORE to another? I tried fetching them with
> `X509_STORE_get1_all_certs`, which sadly doesn't get the CRLs. Then I
> tried `X509_STORE_get0_objects`, but I am unsure of what to do with
> these objects as I cannot access X509_OBJECT's members or find an API
> that would set an object to a X509_STORE. I am using OpenSSL 3.0.0.
>
> Thank you in advance,
> Roman.
>
--
Tomáš Mráz, OpenSSL
More information about the openssl-users
mailing list