OpenSSL: Checking for cert_signing_key

crocs-muni / usable-cert-validation

Research initiative to make TLS certificate validation usable.

https://x509errors.org

MIT License

19 stars 3 forks source link

OpenSSL: Checking for cert_signing_key #64

Open mukrop opened 4 years ago

mukrop commented 4 years ago

Check why the X509_V_ERR_KEYUSAGE_NO_CERTSIGN is not thrown when validating certificates without cert_signing_key/crl_signing_key (certtool settings), see discussion in #49.