From 43c97767afe7aa1dccefec35946dbc8b9cde73a4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?S=C3=A1ndor=20Oroszi?= <oroszisam@gmail.com>
Date: Fri, 11 Sep 2020 17:17:31 +0200
Subject: Allow using an OpenSSL hashed directory for verification in X509Store
 (#943)

Add X509Store.load_locations() to set a CA bundle file and/or an OpenSSL-
style hashed CA/CRL lookup directory, similar to the already existing
SSL.Context.load_verify_locations().

Co-authored-by: Sandor Oroszi <sandor.oroszi@balabit.com>
---
 CHANGELOG.rst | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'CHANGELOG.rst')

diff --git a/CHANGELOG.rst b/CHANGELOG.rst
index e8c52c2..e5f08d2 100644
--- a/CHANGELOG.rst
+++ b/CHANGELOG.rst
@@ -24,6 +24,9 @@ Deprecations:
 Changes:
 ^^^^^^^^
 
+- Added ``OpenSSL.crypto.X509Store.load_locations`` to set trusted
+  certificate file bundles and/or directories for verification.
+  `#943 <https://github.com/pyca/pyopenssl/pull/943>`_
 - Added ``Context.set_keylog_callback`` to log key material.
   `#910 <https://github.com/pyca/pyopenssl/pull/910>`_
 - Added ``OpenSSL.SSL.Connection.get_verified_chain`` to retrieve the
-- 
cgit v1.2.1