X509CrlRef::get_by_cert(): support passing of cert by non-owned reference

Support the passing of the X509 certificate by a non-owned reference. In
addition, add a test for it.

Signed-off-by: Marc Hartmayer <[email protected]>

Author: mhartmay

openssl/src/x509/mod.rs

@@ -1910,7 +1910,7 @@ impl X509CrlRef {
 
     /// Get the revocation status of a certificate
     #[corresponds(X509_CRL_get0_by_cert)]
-    pub fn get_by_cert<'a>(&'a self, cert: &X509) -> CrlStatus<'a> {
+    pub fn get_by_cert<'a>(&'a self, cert: &X509Ref) -> CrlStatus<'a> {
         unsafe {
             let mut ret = ptr::null_mut::<ffi::X509_REVOKED>();
             let status =

openssl/src/x509/tests.rs

@@ -694,6 +694,17 @@ fn test_load_crl() {
         cert.serial_number().to_bn().unwrap(),
         "revoked and cert serial numbers should match"
     );
+
+    let revoked = match crl.get_by_cert(cert.as_ref()) {
+        CrlStatus::Revoked(revoked) => revoked,
+        _ => panic!("cert should be revoked"),
+    };
+
+    assert_eq!(
+        revoked.serial_number().to_bn().unwrap(),
+        cert.serial_number().to_bn().unwrap(),
+        "revoked and cert serial numbers should match"
+    );
 }
 
 #[test]