[gnutls-devel] GnuTLS | _gnutls_verify_crt_status: apply algorithm checks to trusted CAs and other cert improvements (!1140)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Dec 20 10:18:32 CET 2019




Tim Rühsen commented:


If that is ok or not is a matter of policy. As i understand it, you can't set/use a profile that is less secure than the system profile (also not sure what UNKNOWN means in this context). That's good for most users, but might need special care taken by testers and/or developers (they eventually have to change system policy). LGTM.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/1140#note_263533853
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20191220/9f96fdb5/attachment.html>


More information about the Gnutls-devel mailing list