Per the RT report, fixed back in the days of Dreadnoughtosaurus walked the
earth. Or 0.9.8 days anyway
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Dev
We're not adding new functionality to PKCS7; use the CMS API's.
See RT389, for example :)
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mail
Don't know who/when fixed it. Closing ticket.
__
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager
Looking at the current code, it only returns a "strange" value if it cannot
generate canonical form for either name. That really only happens when OOM.
Otherwise it checks lengths (shorter name wins) and then memcmp. T his seems
table to me, now.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
_
The win_rand code has been overhauled over time. There's no stoptime variable
any more, for example.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Devel
Quoting the RH ticket that initiated this:
"The error is not quite bogus, although the error description is not accurate.
The OBJ_txt2nid is not supposed to be called on unregistered objects so the
zero return value indicates an error. You might as well call ERR_clear_error()
in that case."
--
Ric
It's hard, all the "good names" are taken.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@open
OCSP response handling in /apps/ocsp.c
--
2014-06-25
The OCSP Documentation States
https://www.openssl.org/docs/apps/ocsp.html
"Otherwise the OCSP responder certificate's CA is checked against the issuing
CA certificate in the request. If there is a match and the OCSPSigning extended
key
