Fix a serious oversight validating TLS certificates.
authorBrendan Cully <brendan@kublai.com>
Tue, 26 May 2009 00:31:27 +0000 (17:31 -0700)
committerBrendan Cully <brendan@kublai.com>
Tue, 26 May 2009 00:31:27 +0000 (17:31 -0700)
commitb725ce5780709dcf0da1b7c400e0e98df874ba26
tree43a966b3aa144ca10e035ee4a53540737d379bb6
parent1c1ab6197e16e74821530833e72516746b657102
Fix a serious oversight validating TLS certificates.
If any certificate in a chain presented by a server was accepted, the
connection was allowed without verifying that the presented
certificate was actually signed by the certificate in the chain.
mutt_ssl_gnutls.c