Hi folks, I've found an inconsistency in the return status of 'openssl verify'. I've attached a custom dummy ca, and an example certificate. This certificate is valid for some date range in the future.
On my redhat machine (openssl 1.0.1e), running openssl verify will return a status code of 2, but in osx (openssl 0.98zg), the return status is 0. In both cases, I correctly see an error 9 in the function output. The behavior of validating an expired certificate returns a status code of 0 on both systems. -Zak *Zak Blacher* Software Engineer Security Infrastructure 206.453.9955 [email protected] linkedin.com/in/zakblacher
dates_+10y_to_+20y.pem
Description: application/x509-ca-cert
dummy-ca.crt
Description: application/x509-ca-cert
_______________________________________________ openssl-bugs-mod mailing list [email protected] https://mta.openssl.org/mailman/listinfo/openssl-bugs-mod
_______________________________________________ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
