[sr #107648] Misleading documentation for GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT
Christopher Head
INVALID.NOREPLY at gnu.org
Tue Apr 5 03:52:45 CEST 2011
URL:
<http://savannah.gnu.org/support/?107648>
Summary: Misleading documentation for
GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT
Project: GnuTLS
Submitted by: hawk777
Submitted on: Tue 05 Apr 2011 01:52:44 AM GMT
Category: None
Priority: 5 - Normal
Severity: 2 - Minor
Status: None
Privacy: Public
Assigned to: None
Originator Email:
Open/Closed: Open
Discussion Lock: Any
Operating System: None
_______________________________________________________
Details:
The GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT option has as its first documentation
sentence "Allow only trusted CA certificates that have version 1.".
This is misleading. The first time I read it, I thought it meant it would
reject V3 CA certificates, allowing only V1 CA certificates! It might read
better as "Allow only trusted CA certificates *to be* version 1."
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/support/?107648>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/
More information about the Gnutls-devel
mailing list