projects
/
openssl.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(from:
33cc5dd
)
Compat self-signed trust with reject-only aux data
author
Viktor Dukhovni
<openssl-users@dukhovni.org>
Fri, 29 Jan 2016 07:28:43 +0000
(
02:28
-0500)
committer
Viktor Dukhovni
<openssl-users@dukhovni.org>
Mon, 1 Feb 2016 02:24:12 +0000
(21:24 -0500)
When auxiliary data contains only reject entries, continue to trust
self-signed objects just as when no auxiliary data is present.
This makes it possible to reject specific uses without changing
what's accepted (and thus overring the underlying EKU).
Added new supported certs and doubled test count from 38 to 76.
Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
No differences found
projects / openssl.git / commitdiff