# File lib/puppet/network/http_server/webrick.rb, line 23
23:             def x509store
24:                 unless File.exist?(Puppet[:cacrl])
25:                     # No CRL, no store needed
26:                     return nil
27:                 end
28:                 crl = OpenSSL::X509::CRL.new(File.read(Puppet[:cacrl]))
29:                 store = OpenSSL::X509::Store.new
30:                 store.purpose = OpenSSL::X509::PURPOSE_ANY
31:                 store.flags = OpenSSL::X509::V_FLAG_CRL_CHECK_ALL|OpenSSL::X509::V_FLAG_CRL_CHECK
32:                 unless self.ca_cert
33:                     raise Puppet::Error, "Could not find CA certificate"
34:                 end
35: 
36:                 store.add_file(Puppet[:localcacert])
37:                 store.add_crl(crl)
38:                 return store
39:             end