[Swan-dev] match_certs_id()
Paul Wouters
paul at nohats.ca
Fri Feb 8 04:28:41 UTC 2019
On Thu, 7 Feb 2019, D. Hugh Redelmeier wrote:
> So: I changed match_certs_id to loop over the whole list. If any cert
> matched, a match was declared. But the whole list was processed.
>
> ID_FROMCERT processing wasn't really affected because the first match
> would replace it.
>
> So: what would be new? If the match of the first element failed,
> perhaps a match against a cert further down the chain would succeed.
> Without knowing the structure of the list, it isn't clear.
>
> Here are some results. It sure looks as if the only cert of interest
> is the first. So I'll delete the looping code (it was never
> committed) and add some comments.
Thanks!
Paul
More information about the Swan-dev
mailing list