CVSROOT: /cvs Module name: src Changes by: [email protected] 2020/07/28 07:52:18
Modified files:
usr.sbin/rpki-client: main.c
Log message:
-Separate out the adding of trust anchors into a separate function than
what is used for adding other certificates.
-Don't call X509_verify on trust anchors for no reason.
-Add basic checks for TA certificate (subject can parse, cert is not expired)
-Add some useful error reporting if the TA cert we fetched is no good.
ok claudio@
