Re: [exim-dev] tls_in_peerdn/tls_in_peercert for unverified …

Top Pagina
Deze boodschap maakt deel uit van devolgende draad:
Mde volledige draad-boom gesorteerd op datum
MRoman Rybalko op <-
M\Viktor Dukhovni op ->
Delete this message
Reply to this message
Auteur: Jeremy Harris
Datum:  
Aan: exim-dev
Onderwerp: Re: [exim-dev] tls_in_peerdn/tls_in_peercert for unverified certificate
On 25/12/14 21:19, Roman Rybalko wrote:
> Please, check my pull request: https://github.com/Exim/exim/pull/24

- Doesn't do anything for GnuTLS builds
- Wastefully dups every link in a CA-anchored chain
- Depends on undocumented behaviour of OpenSSL; that
the verify callback will always be called for every certificate
chain element, including when a nonterminal certificate
does not verify
- Does not work for DANE-anchored chains
- Needs documentation
--
Cheers,
Jeremy


Deze boodschap werd naar devolgende mailinglijsten gestuurd:
Exim-dev
Mailing Lijst Info | Nabije Berichten		<-Re: [exim-dev] tls_in_peerdn/tls_in_peercert for unverified certificateRe: [exim-dev] tls_in_peerdn/tls_in_peercert for unverified certificate->
Tahini and Hummus and Cumin Development Archives beheerd door cumin AdminsLurker (versie 2.3)