usable-cert-validation Wrong OpenSSL validation result for the unable_to_get

Wrong OpenSSL validation result for the unable_to_get_crl case

Open zacikpa opened this issue 3 years ago • 1 comments

OpenSSL does not return any error message for the unable_to_get_crl example chain. It should return X509_V_ERR_UNABLE_TO_GET_CRL.

Possible culprit might be the load_cert_crl_http function in validation/client/openssl/client.c. Its return value might not be processed properly.

Nov 29 '21 10:11 zacikpa

Nice catch, may be a possible bug in the library. Worth investigating.

Nov 29 '21 14:11 mukrop

usable-cert-validation usable-cert-validation copied to clipboard

Wrong OpenSSL validation result for the unable_to_get_crl case

usable-cert-validation
usable-cert-validation copied to clipboard