# File lib/puppet/network/http_server/webrick.rb, line 23 23: def x509store 24: unless File.exist?(Puppet[:cacrl]) 25: # No CRL, no store needed 26: return nil 27: end 28: crl = OpenSSL::X509::CRL.new(File.read(Puppet[:cacrl])) 29: store = OpenSSL::X509::Store.new 30: store.purpose = OpenSSL::X509::PURPOSE_ANY 31: store.flags = OpenSSL::X509::V_FLAG_CRL_CHECK_ALL|OpenSSL::X509::V_FLAG_CRL_CHECK 32: unless self.ca_cert 33: raise Puppet::Error, "Could not find CA certificate" 34: end 35: 36: store.add_file(Puppet[:localcacert]) 37: store.add_crl(crl) 38: return store 39: end