Message370621
This simple patch exposes OpenSSL's X509_V_FLAG_PARTIAL_CHAIN if it is defined. This lets us trust a certificate if it is signed by a certificate in the trust store, even if that CA is not a root CA. It makes it possible to trust an intermediate CA without trusting the root and all the other intermediate CAs it has signed. |
|
Date |
User |
Action |
Args |
2020-06-02 19:20:28 | l0x | set | recipients:
+ l0x, christian.heimes |
2020-06-02 19:20:28 | l0x | set | messageid: <1591125628.93.0.87420657479.issue40849@roundup.psfhosted.org> |
2020-06-02 19:20:28 | l0x | link | issue40849 messages |
2020-06-02 19:20:28 | l0x | create | |
|