Dear OpenSSL developers,
various grid projects have run into the default maximum chain length
of 10 being too low. These bug reports show examples:
http://bugzilla.globus.org/globus/show_bug.cgi?id=4994
https://savannah.cern.ch/bugs/index.php?37563
The functions SSL_CTX_set_verify_depth() and SSL_set_verify_depth()
allow the maximum length to be increased, but this means that every
application or library around OpenSSL needs to make such calls.
Why not increase the default, say, to 100 instead, as Globus did?
Thanks,
Maarten (CERN/LCG/EGEE)
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
