Skip to content

Commit

Permalink
crypto: add cert check to CNNIC Whitelist
Browse files Browse the repository at this point in the history 
When client connect to the server with certification issued by either
CNNNIC Root CA or CNNNIC EV Root CA, check hash of server
certification in the list of CNNICHashWhitelist.inc. If it's not,
CERT_REVOKED error returns.

See for details in
https://blog.mozilla.org/security/2015/04/02/distrusting-new-cnnic-certificates/
  • Loading branch information
Shigeki Ohtsu committed Jun 4, 2015
1 parent 6d95f4f commit bef171f
Show file tree
Hide file tree
Showing 2 changed files with 5,834 additions and 1 deletion.
Loading

0 comments on commit bef171f

Please sign in to comment.