Tomas Mraz <tmraz at redhat.com> writes: > And the bug is that ret is not set to 0 in _gnutls_verify_certificate2() > in case the unsecure algorithm in signature is detected. The same holds > for crl signature verification in _gnutls_verify_crl2(). Thanks for debugging it. I appreciate it. /Simon