* Set default ssl configuration for Homebrew in MAC OSX to

     /usr/local/etc/openssl, under the advice of Sam Hathaway.

   * Add management certificate support for containers.

   * Fix crashing bugs introduced in version 2.19.9, which did not allow
     alpine to start with the -passfile and use a remote pinerc. Reported by
     Ulf-Dietrich Braumann.

   * fix a bug which was introduced in version 2.19.9, where Alpine would
     free a certificate associated to a key after encryption, and so this
     could not be used during decryption. We use X509_dup to copy the cert
     and so make the copy be freed, and not the original.

   * S/MIME: sign messages using intermediate certificates when needed and
     possible.

1 files changed, 2 insertions, 4 deletions

diff --git a/pith/smkeys.h b/pith/smkeys.h
index 818f46ac..58705bd7 100644
--- a/pith/smkeys.h
+++ b/pith/smkeys.h
@@ -52,15 +52,13 @@ X509          *get_cert_for(char *email, WhichCerts ctype);
 void           save_cert_for(char *email, X509 *cert, WhichCerts ctype);
 char         **get_x509_subject_email(X509 *x);
 EVP_PKEY      *load_key(PERSONAL_CERT *pc, char *pass);
-CertList      *mem_to_certlist(char *contents);
+CertList      *mem_to_certlist(char *contents, WhichCerts ctype);
 void           add_to_end_of_certlist(CertList **cl, char *name, X509 *cert);
 void           free_certlist(CertList **cl);
 PERSONAL_CERT *mem_to_personal_certs(char *contents);
 void           free_personal_certs(PERSONAL_CERT **pc);
 void	       get_fingerprint(X509 *cert, const EVP_MD *type, char *buf, size_t maxLen);
-void	       mark_cert_deleted(WhichCerts ctype, char *email, unsigned state);
-unsigned       get_cert_deleted(WhichCerts ctype, char *email);
-int	       smime_expunge_cert(WhichCerts ctype);
+int	       certlist_to_file(char *filename, CertList *certlist);
 
 #endif /* PITH_SMKEYS_INCLUDED */
 #endif /* SMIME */