Menu

#22 Possibility to check specifics of CMP server certificate

Version 2
open
Martin Peylo
None
1
2017-11-08
2017-06-26
Martin Peylo
No

If "-trusted" is given, there should be an additional option to check details of the used server certificate.

E.g. it would be of advantage to insist on receiving a certificate with specific Policy OID (indicating an authorized CMP server Entity).

Discussion

  • Martin Peylo

    Martin Peylo - 2017-07-04
    • summary: Possibility to check specifics of CMP server certificated --> Possibility to check specifics of CMP server certificate
     

  • Martin Peylo

    Martin Peylo - 2017-07-12
    • assigned_to: Martin Peylo
    • Group: Next Release (example) --> Upstream submission
    • Priority: 5 --> 1
     

  • David von Oheimb

    David von Oheimb - 2017-07-13

    This can already be achieved (yet there is no CLI option in the app for it) via ctx->cert_verify_cb.

     

  • David von Oheimb

    David von Oheimb - 2017-10-20

    The general certificate verification CLI options are available, but the following ones seem to have little to no effect:
    -policy_check
    -policy mytest
    -purpose mypurpose
    -verify_name myname
    -verify_depth 99
    -explicit_policy
    -inhibit_any
    -inhibit_map
    -policy_print

     

  • Martin Peylo

    Martin Peylo - 2017-11-08
    • Group: Upstream submission --> Version 2
     

Log in to post a comment.

Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.