Remove artificial constraint in _gnutls_x509_verify_certificate

Nikos Mavrogiannopoulos nmav at
Tue Mar 2 22:34:24 CET 2010

Tomas Mraz wrote:
> Hi,
> I was examining the current _gnutls_x509_verify_certificate() code and I
> found that the code does not allow unconditionally accepting the site
> certificate if it is on the trust list. I think that this is unnecessary
> restriction which should be removed.

Please elaborate. What is the scenario that wasn't working before and
you believe you fixed with this patch?


More information about the Gnutls-devel mailing list