Skip to content
Commit 246b35a9 authored by Dr. Stephen Henson's avatar Dr. Stephen Henson
Browse files

Make OCSP response verification more flexible.



If a set of certificates is supplied to OCSP_basic_verify use those in
addition to any present in the OCSP response as untrusted CAs when
verifying a certificate chain.

PR#3668

Reviewed-by: default avatarMatt Caswell <matt@openssl.org>
(cherry picked from commit 4ca5efc2)
parent 79cc5417
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment