* Allow x509 certificates which set basicConstraints=CA:FALSE,pathlen:0
to validate, as it is common on self-signed leaf certificates.
(LP: #1926254)
- d/p/lp-1926254-1-Allow-certificates-with-Basic-Constraints-CA-fa.patch
- d/p/lp-1926254-2-Set-X509_V_ERR_INVALID_EXTENSION-error-for-inva.patch
- d/p/lp-1926254-3-Add-test-cases-for-the-non-CA-certificate-with-.patch
This bug was fixed in the package openssl - 1.1.1f-1ubuntu2.4
---------------
openssl (1.1.1f-1ubuntu2.4) focal; urgency=medium
* Allow x509 certificates which set basicConstraint s=CA:FALSE, pathlen: 0 1926254- 1-Allow- certificates- with-Basic- Constraints- CA-fa.patch 1926254- 2-Set-X509_ V_ERR_INVALID_ EXTENSION- error-for- inva.patch 1926254- 3-Add-test- cases-for- the-non- CA-certificate- with-.patch
to validate, as it is common on self-signed leaf certificates.
(LP: #1926254)
- d/p/lp-
- d/p/lp-
- d/p/lp-
-- Matthew Ruffell <email address hidden> Wed, 28 Apr 2021 12:37:28 +1200