[gnutls-devel] GnuTLS | Service Desk (from quentin.gouchet at gmail.com): GnuTLS does not ncheck for crlSign field (#564)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Tue Sep 18 08:40:11 CEST 2018


The rationale behind that because is that CRLs are downloaded once, and can be checked just after download, instead of every time when a certificate is validated. We can certainly make `gnutls-cli` fail when an invalid CRL is provided, but that failure will be early before any connection is initiated. Will that be covering that requirement?

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/564#note_102084886
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20180918/e1b3e446/attachment-0001.html>


More information about the Gnutls-devel mailing list