-
Type:
Bug
-
Resolution: Fixed
-
Priority:
P2
-
Affects Version/s: 1.2.1
-
Component/s: security-libs
-
None
-
1.2.1beta
-
generic
-
solaris_7
We plan to give certificates w/ short validity for testing only.
So we must check certificate validity when verifying signatures on providers.
If not, one could just sign his provider w/ a testing certificate and
use his provider all the time.
Also, we should check BasicConstrain extension if it is marked "critical".
So we must check certificate validity when verifying signatures on providers.
If not, one could just sign his provider w/ a testing certificate and
use his provider all the time.
Also, we should check BasicConstrain extension if it is marked "critical".