diff options
author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2012-10-07 12:10:59 +0200 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2012-10-07 12:10:59 +0200 |
commit | 565f2c39c51af3c05dfc25362dca83d32187430d (patch) | |
tree | 2508f3ad5a4f1f57423d1f80388379b2bec945f2 /src | |
parent | e25f212040b5ddf0e5958c13346a0ab353d92cb7 (diff) | |
download | gnutls-565f2c39c51af3c05dfc25362dca83d32187430d.tar.gz |
Bug fixes in DANE.
Corrected packet length parsing and removed the verify
options DANE_VERIFY_DNSSEC_DATA_INVALID and DANE_VERIFY_NO_DNSSEC_DATA.
There is longer use for them since using the DANE API requires DNSSEC.
Diffstat (limited to 'src')
-rw-r--r-- | src/cli.c | 4 |
1 files changed, 0 insertions, 4 deletions
@@ -503,10 +503,6 @@ cert_verify_callback (gnutls_session_t session) fprintf(stderr, "- The certificate differs.\n"); if (status & DANE_VERIFY_NO_DANE_INFO) fprintf(stderr, "- There was no DANE information.\n"); - if (status & DANE_VERIFY_DNSSEC_DATA_INVALID) - fprintf(stderr, "- The DNSSEC signature is invalid.\n"); - if (status & DANE_VERIFY_NO_DNSSEC_DATA) - fprintf(stderr, "- There was no DNSSEC signature.\n"); if (!insecure) return -1; } |