projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f5f4fba) | patch
find_issuer(): When returning an expired issuer, take the most recently expired one
authorDr. David von Oheimb <David.von.Oheimb@siemens.com>
Thu, 7 Jan 2021 19:02:39 +0000 (20:02 +0100)
committerDr. David von Oheimb <dev@ddvo.net>
Thu, 14 Jan 2021 13:34:00 +0000 (14:34 +0100)
commitc476c06f507a2c64a59c8cc86f2109aa00cf5133
tree83787ab13dc20913c16fc816d1a442ea7e4b674atree | snapshot
parentf5f4fbaa44af055e0658c6810b91aa8607e8383acommit | diff
find_issuer(): When returning an expired issuer, take the most recently expired one

Also point out in the documenting comment that a non-expired issuer is preferred.

Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13805)
crypto/x509/x509_vfy.c diff | blob | history
doc/man1/openssl-verification-options.pod diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.