On Dec 22, 2007, at 11:42 AM, David Schwartz wrote:
I don't think the license can compel you to make a demonstrably
false statement. I think such a clause would be considered
unconscionable. However, if the clauses are true under any
reasonable interpretation at all, then it's probably not
On Fri, 2007-12-21 at 22:23 -0800, Suchindra Chandrahas wrote:
> Hi All,
> ClientFinished message has 2 hashes (md5 and
> sha1) of "All Handshake Messages" till that but not
> including ClientFinished message itself. In a
> Handshake message, i notice that there are two
> sections:
>
> 1
> The entire body of source code which makes up OpenSSL and is
> distributed as OpenSSL, btw, might fall under the "compilation
> copyright" rules. My understanding of those rules (which govern
> things like phone books, dictionaries, databases, and anything else
> that sources from multiple plac
If it's contributed to, and distributed as a part of, a project, the
most common-sense interpretation of intent would be that the
contributor intended that the contributed code be distributed under
the same license as the remainder of the project. While a formal
conveyance of copyright likely do
Hi,
AFAIK, OpenSSL has no code to retrieve the CRL from CRL distribution
points. The CRL retrieve and update should be done by yourself.
However, by putting a PEM encoded CRL to CApath will make OpenSSL load
this CRL correctly.
To use CRL, you may retrieve and check CRL at verify_callback, or use
