[Swan-dev] match_certs_id()

Paul Wouters paul at nohats.ca
Fri Feb 8 04:28:41 UTC 2019

On Thu, 7 Feb 2019, D. Hugh Redelmeier wrote:

> So: I changed match_certs_id to loop over the whole list.  If any cert
> matched, a match was declared.  But the whole list was processed.
> ID_FROMCERT processing wasn't really affected because the first match
> would replace it.
> So: what would be new?  If the match of the first element failed,
> perhaps a match against a cert further down the chain would succeed.
> Without knowing the structure of the list, it isn't clear.
> Here are some results.  It sure looks as if the only cert of interest
> is the first.  So I'll delete the looping code (it was never
> committed) and add some comments.



More information about the Swan-dev mailing list