SSL certificate chain validation issues
Tomasz Wasilczyk
twasilczyk at pidgin.im
Sat Apr 19 11:32:38 EDT 2014
W dniu 19.04.2014 16:21, Daniel Atallah pisze:
> I don't think there's a way to fix this without API addition - we need
> to get more information about each cert to be able to check the usage
> constraints. Fortunately, there are 3 SSL plugin slots available, so
> API addition is possible.
I think we shouldn't utilize the last plugin slot. Instead, it should be
a link to PurpleCertificateSchemeMore (or somethink like that) struct,
which could hold more slots for future use.
Your patch leaves the last slot free, so it's not a problem yet.
Tomek
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4225 bytes
Desc: Kryptograficzna sygnatura S/MIME
URL: <https://pidgin.im/cgi-bin/mailman/private/security/attachments/20140419/5ecb6d33/attachment-0001.bin>
More information about the security
mailing list