openssl

mirror/openssl

Fork 0

mirror of https://github.com/openssl/openssl.git synced 2024-12-03 05:41:46 +08:00

Commit Graph

Author	SHA1	Message	Date
Dr. David von Oheimb	9495cfbc22	make various test CA certs RFC 5280 compliant w.r.t. X509 extensions Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/13719)	2021-01-20 15:53:47 +01:00
Viktor Dukhovni	33cc5dde47	Compat self-signed trust with reject-only aux data When auxiliary data contains only reject entries, continue to trust self-signed objects just as when no auxiliary data is present. This makes it possible to reject specific uses without changing what's accepted (and thus overring the underlying EKU). Added new supported certs and doubled test count from 38 to 76. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>	2016-01-31 21:24:12 -05:00

Author

SHA1

Message

Date

Dr. David von Oheimb

9495cfbc22

make various test CA certs RFC 5280 compliant w.r.t. X509 extensions

Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/13719)

2021-01-20 15:53:47 +01:00

Viktor Dukhovni

33cc5dde47

Compat self-signed trust with reject-only aux data

When auxiliary data contains only reject entries, continue to trust
self-signed objects just as when no auxiliary data is present.

This makes it possible to reject specific uses without changing
what's accepted (and thus overring the underlying EKU).

Added new supported certs and doubled test count from 38 to 76.

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>

2016-01-31 21:24:12 -05:00

2 Commits