Re: certificate list parsing issues
Michael Ströder wrote:
masarati(a)aero.polimi.it wrote:
> I recently hit a pretty long certificate list with what appears to be crap
> past the end of its valid portion. I have no indication about how this
> was generated, but it is supposed to be in production within a CA,
> initially using a release of OpenLDAP without detailed CL validation in
> place (remember this was released in 2.4). I'm not posting this to the
> ITS because it's data I'm not allowed to disclose.
How about using this one as a test (33 MB):
http://onsitecrl.certplus.com/DIRECTIONGENERALEDESIMPOTSDIRECTIONGENERALE...
IIRC I once tried to add this one in OpenLDAP 2.4.x but it did not work.
Works fine with HEAD, once you set sockbuf_max large enough for a 33MB request...
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/