Hi Brian:
Given that the subject certificate is self-signed, it means that the issuer and
the subject are the same certificate. This change verifies that.
--
-Todd Short
// tsh...@akamai.commailto:tsh...@akamai.com
// “One if by land, two if by sea, three if by the Internet.
On Feb 13, 2015, at
* Add task for decryption of client key exchange response
* Add task for generating client certificate verify message
* Add task for signing of server key exchange message
Can you explain this a little more?
I can. I mentioned this on the -team mailing list. The idea is that an
On Fri, Feb 13, 2015 at 09:05:53AM -0600, Short, Todd wrote:
Hello openssl-dev:
We at Akamai have a number of enhancements and fixes for OpenSSL that we
would like to contribute. Before I inundate
r...@openssl.orgmailto:r...@openssl.org and openssl-dev mailing lists, I am
asking if
Hello openssl-dev:
We at Akamai have a number of enhancements and fixes for OpenSSL that we would
like to contribute. Before I inundate r...@openssl.orgmailto:r...@openssl.org
and openssl-dev mailing lists, I am asking if there’s a desire to provide the
changes as one large patch file, or as
Very cool.
Short, Todd tsh...@akamai.com wrote:
* Check that in matching issuer/subject certs, that a self-signed subject
also has a self-signed issuer
Could you explain this one? It isn't necessarily the case that a
self-signed subject has a self-signed issuer in PKIX, if I am
understanding