[gnutls-devel] GnuTLS | x509: reject certificates having duplicate extensions (!1145)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Mon Dec 30 12:16:32 CET 2019




Nikos Mavrogiannopoulos commented:


I tried to extend this enhancement for CRLs but rolled back as RFC5280 doesn't require something similar there. Certificate requests also. Most likely though it is the right thing to apply this restriction to both of them.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/1145#note_265810608
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20191230/647612bf/attachment.html>


More information about the Gnutls-devel mailing list