[Openvpn-devel] [PATCH v2] OpenSSL: Fix --crl-verify not loading multiple CRLs in one file

From: Maxim Plotnikov Lack of this led people accepting multiple CAs to use capath, which already supports multiple CRLs. But capath mode itself is somewhat ugly: you have to create new file/symlink every time CRL is updated, and there's no good way to clean them up without restarting OpenVPN, si

Re: [Openvpn-devel] [PATCH] OpenSSL: Fix --crl-verify not loading multiple CRLs in one file

On 4/2/20 1:28 AM, Arne Schwabe wrote: > Am 01.04.20 um 23:50 schrieb w...@torlan.ru: >> From: Maxim Plotnikov >> >> Lack of this led people accepting multiple CAs to use capath, >> which already supports multiple CRLs. But capath mode itself >> is somewhat ugly: you have to create new file/symlin

[Openvpn-devel] [PATCH] OpenSSL: Fix --crl-verify not loading multiple CRLs in one file

From: Maxim Plotnikov Lack of this led people accepting multiple CAs to use capath, which already supports multiple CRLs. But capath mode itself is somewhat ugly: you have to create new file/symlink every time CRL is updated, and there's no good way to clean them up without restarting OpenVPN, si

[Openvpn-devel] [PATCH] docs: Add reference to X509_LOOKUP_hash_dir(3)

From: WGH This is probably the best description of the rather confusing capath directory structure OpenSSL manual has to offer. --- doc/openvpn.8 | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/doc/openvpn.8 b/doc/openvpn.8 index 864f94e8..74638cf3 100644 --- a/doc