[openssl.org #2803] bug report: OCSP_basic_verify may return incorrect value

jean-etienne.schwa...@bull.net via RT Thu, 26 Apr 2012 10:20:24 -0700

Hello,

openssl 0.9.8a until 1.0.1b


OCPS_basic_verify return a positive value when X509_STORE_CTX_init failed, 
and, in this case, we can trust an unverified OCSP response.
The following path correct this.

Thanks for all the good job
Jean-Etienne Schwartz

Hello,

openssl 0.9.8a until 1.0.1b

OCPS_basic_verify return a positive value when X509_STORE_CTX_init failed, and, in this case, we can trust an unverified OCSP response.
The following path correct this.

Thanks for all the good job
Jean-Etienne Schwartz

ocsp_vfy.diff
Description: Binary data

[openssl.org #2803] bug report: OCSP_basic_verify may return incorrect value

Reply via email to