SSL certificate chain validation issues

Tomasz Wasilczyk twasilczyk at
Sat Apr 19 11:32:38 EDT 2014

W dniu 19.04.2014 16:21, Daniel Atallah pisze:
> I don't think there's a way to fix this without API addition - we need
> to get more information about each cert to be able to check the usage
> constraints. Fortunately, there are 3 SSL plugin slots available, so
> API addition is possible.

I think we shouldn't utilize the last plugin slot. Instead, it should be 
a link to PurpleCertificateSchemeMore (or somethink like that) struct, 
which could hold more slots for future use.

Your patch leaves the last slot free, so it's not a problem yet.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4225 bytes
Desc: Kryptograficzna sygnatura S/MIME
URL: <>

More information about the security mailing list