[openssl-dev] [openssl.org #3721] Patch for additional checking of self-signed certificates
Short, Todd via RT
rt at openssl.org
Fri Feb 27 20:14:08 UTC 2015
Hello OpenSSL Org:
This is a change that Akamai has made to its implementation of OpenSSL.
Version: master branch
Description: Additional checking of self-signed certificates.
Check that in matching issuer/subject certs, that a self-signed subject also has a self-signed issuer.
Given that the subject certificate is self-signed, it means that the issuer and the subject are the same certificate. This change verifies that.
Github link:
https://github.com/akamai/openssl/commit/faff94b732472616828fe724e09053f134ebb88b
And attachment.
Thank you.
--
-Todd Short
// tshort at akamai.com
// “One if by land, two if by sea, three if by the Internet."
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0006-Check-that-in-matching-issuer-subject-certs-that-a-s.patch
Type: application/octet-stream
Size: 1579 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20150227/cedd7da1/attachment-0001.obj>
More information about the openssl-dev
mailing list