openssl/crypto/x509
Viktor Dukhovni dc5831da59 Apply self-imposed path length also to root CAs
Also, some readers of the code find starting the count at 1 for EE
cert confusing (since RFC5280 counts only non-self-issued intermediate
CAs, but we also counted the leaf).  Therefore, never count the EE
cert, and adjust the path length comparison accordinly.  This may
be more clear to the reader.

Reviewed-by: Matt Caswell <matt@openssl.org>
2018-10-18 00:07:56 -04:00
..
build.info
by_dir.c Use secure_getenv(3) when available. 2018-09-24 11:21:18 +10:00
by_file.c Use secure_getenv(3) when available. 2018-09-24 11:21:18 +10:00
t_crl.c
t_req.c
t_x509.c
x509_att.c
x509_cmp.c
x509_d2.c
x509_def.c
x509_err.c
x509_ext.c
x509_lcl.h
x509_lu.c
x509_meth.c Avoid shadowing 'free' in X509_LOOKUP_met_set_free 2018-08-17 13:57:23 -05:00
x509_obj.c
x509_r2x.c
x509_req.c
x509_set.c
x509_trs.c Update copyright year 2018-09-11 13:45:17 +01:00
x509_txt.c
x509_v3.c
x509_vfy.c Apply self-imposed path length also to root CAs 2018-10-18 00:07:56 -04:00
x509_vpm.c
x509cset.c
x509name.c
x509rset.c
x509spki.c
x509type.c
x_all.c
x_attrib.c
x_crl.c
x_exten.c
x_name.c
x_pubkey.c
x_req.c
x_x509.c
x_x509a.c