Remove artificial constraint in _gnutls_x509_verify_certificate
nmav at gnutls.org
Tue Mar 2 22:34:24 CET 2010
Tomas Mraz wrote:
> I was examining the current _gnutls_x509_verify_certificate() code and I
> found that the code does not allow unconditionally accepting the site
> certificate if it is on the trust list. I think that this is unnecessary
> restriction which should be removed.
Please elaborate. What is the scenario that wasn't working before and
you believe you fixed with this patch?
More information about the Gnutls-devel