Dear openssl-users: We have some old certificates that have ill-formed value for the subjectAltName extension, causing the TLS handshake to fail.
Are there any options that can be configured to by-pass the parsing of the subjectAltName extension (or all the x509v3 extensions) during TLS handshake, without disabling the certificate validation all together? Thanks for any suggestions.
-- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
