>
> On the other hand, the actual certificates are not what one
> would want to log anyway. Instead one would only want to log DS RRsets
> or NODATA proofs from eTLD registries (gTLDs, ccTLDs and also various
> 2LD, 3LD, ... suffixes operated by TLD registries).
This is the case if you run your
>I'm ok with adoption so long as we include sufficient
caveats along the way (and then add more caveats just
in case:-)
In OpenSSL, an application must create a function to do the logging, and call
an API to register that function. The library never does this on its own, or
under co
