artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b737a7b) | patch
Enable policy checking by default now that we are DAG implementation based.
authorbeck <beck@openbsd.org>
Fri, 28 Apr 2023 16:50:16 +0000 (16:50 +0000)
committerbeck <beck@openbsd.org>
Fri, 28 Apr 2023 16:50:16 +0000 (16:50 +0000)
commit7d883af911e8fa758bfdf87ece7e12f7a84561c0
treea2b9a1ae6983b943d0a645a17bcbaa71e4c65118tree | snapshot
parentb737a7be59bdfe9d363585316c50ebc3e7a73c9bcommit | diff
Enable policy checking by default now that we are DAG implementation based.

This ensures that we will no longer silently ignore a certificate with
a critical policy extention by default.

ok tb@
lib/libcrypto/x509/x509_verify.c diff | blob | history
lib/libcrypto/x509/x509_vfy.c diff | blob | history
lib/libcrypto/x509/x509_vfy.h diff | blob | history
lib/libcrypto/x509/x509_vpm.c diff | blob | history
regress/lib/libcrypto/x509/policy/policy.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim