fre 4 juli 2025 kl. 13:20 skrev <minf...@apache.org>: > Author: minfrin > Date: Fri Jul 4 11:20:00 2025 > New Revision: 1926950 > > URL: http://svn.apache.org/viewvc?rev=1926950&view=rev > Log: > Support OpenSSL3 providers / cert store URLs > > - Add serf_ssl_cert_uri_set(), a callback to set the URL of a certificate > store. > > - Use the OSSL_STORE API from OpenSSL to read certificates and keys. Certs > and > keys are read from a URL instead of a file path. The default URL scheme > is > file:. > > - Keep fallback support for the existing > serf_ssl_client_cert_provider_set() > callback, which reads exclusively from a local PKCS12 file. > > - Support full intermediate certificate handling. Previously whatever was > in the > PKCS12 file was blindly passed to the the server on the assumption the > administrator had pre-done the work constructing the certificate chain. > Now we > make no assumption as to the size of the certificate store, if a Windows > personal certificate store of a MacOS keychain is used, we search for > the most > appropriate leaf certificate that matches what is requested by the > server. > > - Update test cases to handle both URIs and PKCS12 files.
Nice! For the next time; you can close the PR by referencing it in the log message - from Subversion's HACKING: https://subversion.apache.org/docs/community-guide/conventions.html#github Kind regards, Daniel
