« Return to Thread: [openssl.org #2803] bug report: OCSP_basic_verify may return incorrect value
[openssl.org #2803] bug report: OCSP_basic_verify may return incorrect value
by Arnis Par?ovs via RT
::
Rate this Message:
Hello,
openssl 0.9.8a until 1.0.1b
OCPS_basic_verify return a positive value when X509_STORE_CTX_init failed,
and, in this case, we can trust an unverified OCSP response.
The following path correct this.
Thanks for all the good job
Jean-Etienne Schwartz
Hello,
openssl 0.9.8a until 1.0.1b
OCPS_basic_verify return a positive value when X509_STORE_CTX_init failed, and, in this case, we can trust an unverified OCSP response.
The following path correct this.
Thanks for all the good job
Jean-Etienne Schwartz
openssl 0.9.8a until 1.0.1b
OCPS_basic_verify return a positive value when X509_STORE_CTX_init failed,
and, in this case, we can trust an unverified OCSP response.
The following path correct this.
Thanks for all the good job
Jean-Etienne Schwartz
Hello,
openssl 0.9.8a until 1.0.1b
OCPS_basic_verify return a positive value when X509_STORE_CTX_init failed, and, in this case, we can trust an unverified OCSP response.
The following path correct this.
Thanks for all the good job
Jean-Etienne Schwartz
ocsp_vfy.diff (740 bytes) « Return to Thread: [openssl.org #2803] bug report: OCSP_basic_verify may return incorrect value
| Free embeddable forum powered by Nabble | Forum Help |
