Re: gnutls fails to use Verisign CA cert without a Basic Constraint

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: gnutls fails to use Verisign CA cert without a Basic Constraint

From:	Tomas Mraz
Subject:	Re: gnutls fails to use Verisign CA cert without a Basic Constraint
Date:	Fri, 09 Jan 2009 11:54:28 +0100

On Fri, 2009-01-09 at 11:16 +0100, Simon Josefsson wrote:
> Simon Josefsson <address@hidden> writes:
> 
> > "Douglas E. Engert" <address@hidden> writes:
> >
> >> Attached are the server cert (auth2.it.anl.gov), the intermediate cert 
> >> (f0a38a80.0)
> >> and the CA self signed cert (7651b327.0)
> >
> > Thanks, I can reproduce the problem.  Should be fixed with this patch:
> >
> >  http://git.savannah.gnu.org/cgit/gnutls.git/commit/
> 
> Sorry, that link was wrong.  For the 2.6.x branch the proper link is:
> 
> http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=commitdiff;h=423fc8b82f2b9aa3ea820cd5cf75d5813dffbbf0
> 
> Please test the patch and confirm whether or not it works for you.  I
> think we should do a new 2.6.x release to deal with this.

I suppose there is an extraneous gnutls_assert () call in the case the
cert is V1 and the appropriate flags are set.
-- 
Tomas Mraz
No matter how far down the wrong road you've gone, turn back.
                                              Turkish proverb

[Prev in Thread]

Current Thread

[Next in Thread]

gnutls fails to use Verisign CA cert without a Basic Constraint, Douglas E. Engert, 2009/01/07
- Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Simon Josefsson, 2009/01/08
  - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Douglas E. Engert, 2009/01/08
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Simon Josefsson, 2009/01/09
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Simon Josefsson, 2009/01/09
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Tomas Mraz <=
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Simon Josefsson, 2009/01/09
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Tomas Mraz, 2009/01/09
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Douglas E. Engert, 2009/01/09
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Simon Josefsson, 2009/01/09
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Daniel Kahn Gillmor, 2009/01/09
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Simon Josefsson, 2009/01/10
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Douglas E. Engert, 2009/01/09
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Simon Josefsson, 2009/01/10
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Nikos Mavrogiannopoulos, 2009/01/10
    - Re: gnutls fails to use Verisign CA cert without a Basic Constraint, Simon Josefsson, 2009/01/11

Prev by Date: Re: gnutls fails to use Verisign CA cert without a Basic Constraint
Next by Date: Re: gnutls fails to use Verisign CA cert without a Basic Constraint
Previous by thread: Re: gnutls fails to use Verisign CA cert without a Basic Constraint
Next by thread: Re: gnutls fails to use Verisign CA cert without a Basic Constraint
Index(es):
- Date
- Thread