[gnutls-devel] GnuTLS | x509: check certificate trust status when adding CA through AIA (!1354)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Thu Nov 12 11:27:22 CET 2020

Sahana Prasad commented:

@dueno Thanks for the fix. I had a similar solution, except I used find_issuer() before _gnutls_trust_list_get_issuer() which was wrong as find_issuer() does not compare the node[hash].

Instead you used _gnutls_trust_list_get_issuer() directly which checks the issuer through gnutls_x509_crt_check_issuer() anyway.

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1354#note_446217501
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20201112/0c468ce1/attachment.html>

More information about the Gnutls-devel mailing list