[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Processing of freshestCRL extension in CRLs

To: "Horvath, Tom (US SSA)" <tom.horvath@xxxxxxxxxxxxxx>
Subject: Re: Processing of freshestCRL extension in CRLs
From: Bruce Stephens <bruce.stephens@xxxxxxxxx>
Date: Wed, 17 Jan 2007 18:27:23 +0000
Cc: imc-cml <imc-cml@xxxxxxx>
In-reply-to: <80mz4hh8e7.fsf@xxxxxxxxxxxxxx> (Bruce Stephens's message of "Wed\, 17 Jan 2007 17\:26\:24 +0000")
List-archive: <http://www.imc.org/imc-cml/mail-archive/>
List-id: <imc-cml.imc.org>
List-unsubscribe: <mailto:imc-cml-request@imc.org?body=unsubscribe>
References: <27E9F6EA4FD4B649A20AB9610B682E663B685D@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> <80wt3lj2m0.fsf@xxxxxxxxxxxxxx> <27E9F6EA4FD4B649A20AB9610B682E663B68E3@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> <80mz4hh8e7.fsf@xxxxxxxxxxxxxx>
Sender: owner-imc-cml@xxxxxxxxxxxx
User-agent: Gnus/5.11 (Gnus v5.11) Emacs/22.0.92 (gnu/linux)

Bruce Stephens <bruce.stephens@xxxxxxxxx> writes:

[...]

> And, as it happens, we have no deltaCRLs (so the expected behaviour
> was for verification to fail, which it does does, of course).  And the
> specific CRL has now expired.
>
> Anyway, I'll continue investigating (I'm currently working on
> constructing CRLs with this extension, and deltaCRLs, since OpenSSL
> doesn't directly support these yet).

I should probably stress this.  This is (as far as I know, anyway) of
no operational importance.  I'm just trying to understand exactly
what's happening so (if necessary) I can fix things.

References:
- RE: Processing of freshestCRL extension in CRLs
  - From: Horvath, Tom \(US SSA\)
- Re: Processing of freshestCRL extension in CRLs
  - From: Bruce Stephens
- RE: Processing of freshestCRL extension in CRLs
  - From: Horvath, Tom \(US SSA\)
- Re: Processing of freshestCRL extension in CRLs
  - From: Bruce Stephens

Prev by Date: Re: Processing of freshestCRL extension in CRLs
Previous by thread: Re: Processing of freshestCRL extension in CRLs
Index(es):
- Date
- Thread