On Mon, Mar 14, 2005, yf-263 wrote:
> 在 2005-02-26六的 14:43 [EMAIL PROTECTED]
> >
> > ssl_verify_callback(...)
> > {
> > if preverify_ok is 0
> > return 0;
> >
> > extract CRL distrib point from certificate;
> > connect to it and download CRL file;
>
> Is
å 2005-02-26åç 14:43 [EMAIL PROTECTED]
> Hi.
>
> I'm trying to add support for dynamic crl handling to my
> application.
>
> The approach I was thinking to use is this:
I have some questions on your approach as following, sorry for confuse
since I'm really a newbie to ssl (despite open?* or itse
Hi.
I'm trying to add support for dynamic crl handling to my
application.
The approach I was thinking to use is this:
ssl_verify_callback(...)
{
if preverify_ok is 0
return 0;
extract CRL distrib point from certificate;
connect to it and download CRL fil
Per Mützell wrote:
>
> We have problems with CRL verification in Openssl 0.9.6 .
> The problem is identified as related to a bug in the current ASN1-module.
> ( See attached message from openssl-dev list. )
> The CA that we use genererates CRLs that adds OPTIONAL, SEQUENCE OF and/or
> SET OF ite
