Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.
Sign up
validation code for certificate & small nss patch for repeated certificate validation
Fetching latest commit…
Cannot retrieve the latest commit at this time.
| Type | Name | Latest commit message | Commit time |
|---|---|---|---|
| Failed to load latest commit information. | |||
|
README | ||
|
|
analyze_bad_cert_domain.pl | ||
|
|
countCrlsetEntries.pl | ||
|
|
nss.patch | ||
|
|
verifyChains.pl | ||
README
Tools for validating certificate chains against using NSS. nss.patch: Small patch against nss, which disables the crl issuer cache. This makes it possible to check large volumes of chains, without the results being tainted because old certificates are still being held in memory analyze_bad_cert_domain.pl Analyze the reasons for certificate<->hostname mismatches in greater detail. Requires the dev-hostname branch of the NSS bindings at https://github.com/0xxon/perl-nss. countCrlSetEntries.pl Count the entries in a crl set as created by https://github.com/agl/crlset-tools verifyChains.pl Mass-checking of certificate chains using NSS. Requires a patched version of NSS using nss.patch and the mozilla-functions branch of the NSS bindings at https://github.com/0xxon/perl-nss. Please see the comments in the script - it describes the input file format as well as the locations where the certificates files are expected to be.