Thanks for the clarification David. Your help is much appreciated.
David von Oheimb , 31 Ağu 2021 Sal, 08:50 tarihinde şunu
yazdı:
> Hello Dennis,
>
> here are answers to your questions.
>
>
>- All CRL signatures are (by default) verified - otherwise status
>checking by CRLs would be inse
Hello Dennis,
here are answers to your questions.
* All CRL signatures are (by default) verified - otherwise status
checking by CRLs would be insecure. The function used is
def_crl_verify() in crypto/x509/x_crl.c
* All CRLs are kept in the X509_STORE such that they can be reused for
