lib_pypy/_cffi_ssl/_stdssl/certificate.py

69,70c69,70
<         i = lib.X509_get_ext_by_NID(certificate, lib.NID_subject_alt_name, i)
<         if i < 0:
---
>         names = lib.X509_get_ext_d2i(certificate, lib.NID_subject_alt_name, ffi.NULL, ffi.NULL)
>         if names is ffi.NULL:
73,90d72
< 
<         # now decode the altName
<         ext = lib.X509_get_ext(certificate, i);
<         method = lib.X509V3_EXT_get(ext)
<         if method is ffi.NULL:
<             raise ssl_error("No method for internalizing subjectAltName!")
< 
<         ext_data = lib.X509_EXTENSION_get_data(ext)
<         ext_data_len = ext_data.length
<         ext_data_value = ffi.new("unsigned char**", ffi.NULL)
<         ext_data_value[0] = ext_data.data
< 
<         if method.it != ffi.NULL:
<             names = lib.ASN1_item_d2i(ffi.NULL, ext_data_value, ext_data_len, lib.ASN1_ITEM_ptr(method.it))
<         else:
<             names = method.d2i(ffi.NULL, ext_data_value, ext_data_len)
< 
<         names = ffi.cast("GENERAL_NAMES*", names)
258,259d239
<     if lib.OPENSSL_VERSION_NUMBER >= 0x10001000:
<         lib.X509_check_ca(certificate)
280,282c260
<     if lib.OPENSSL_VERSION_NUMBER < 0x10001000:
<         lib.sk_DIST_POINT_free(dps);
< 
---
>     lib.sk_DIST_POINT_free(dps);