On 2011/09/18 03:15 PDT, Ralph Holz (TUM) wrote: > does NSS check the pathlength extension in an issuing certificate? I am > particularly wondering if pathlen:0 is honoured.
Yes and Yes. NSS 3.12 claims compliance with RFC 3280. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto