I would also suggest this not get changed in the 0.9.6 branch. I'm even dubious about changing it in the 0.9.7 branch. The reason is that such a change breaks the current test scripts, and then I can only guess what other people's scripts will do.
The current solution is instead to parse the output from openssl verify. I'll change the milestone on this ticket to 0.9.8. [steve - Fri Aug 30 20:40:29 2002]: > I agree that this should be done but there are quite a few cases to > cover. > > The exit code could be modified to represent the actual verify error. > This is possible because code 1 is used for other errors and is not a > valid verify failure reason. > > However theres also the issue of what should happen if multiple > certificates are verified: should it check all the certificates (as it > currently does) and have the exit code represent the first error or > halt > on the first error with a failure code? > > I'd suggest this behaviour is made controllable via some new command > line options. > > Steve. -- Richard Levitte ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
