Make it possible to trust intermediary certificates.

Based on tiny patch from "Douglas E. Engert" <deengert@anl.gov> in <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3351/focus=3376>.
author: Simon Josefsson <simon@josefsson.org> 2009-02-02 17:21:17 +0100
committer: Simon Josefsson <simon@josefsson.org> 2009-02-02 17:21:17 +0100
commit: 0ca6c0eeb67e3be4f6d79d775f23c3fccba97444 (patch)
tree: 4d2de3c0a8bd2c7f6db2162cbe232aeb96b4894a /tests
parent: 9c0849b73bb0125d8e8f7e27cdde1095bb4321e5 (diff)
download: gnutls-0ca6c0eeb67e3be4f6d79d775f23c3fccba97444.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/tests/chainverify.c b/tests/chainverify.c
index 7647d59f52..2da18ff163 100644
--- a/tests/chainverify.c
+++ b/tests/chainverify.c
@@ -703,6 +703,11 @@ static struct
     0, GNUTLS_CERT_INSECURE_ALGORITHM | GNUTLS_CERT_INVALID },
   { "cacertrsamd5 ok", cacertrsamd5, &cacertrsamd5[2],
     GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD5, 0 },
+  { "cacertrsamd5 short-cut not ok", cacertrsamd5, &cacertrsamd5[1],
+    GNUTLS_VERIFY_DO_NOT_ALLOW_SAME,
+    GNUTLS_CERT_SIGNER_NOT_FOUND | GNUTLS_CERT_INVALID },
+  { "cacertrsamd5 short-cut ok", cacertrsamd5, &cacertrsamd5[1],
+    0, 0 },
   { NULL, NULL, NULL, 0}
 };
 /* *INDENT-ON* */
author	Simon Josefsson <simon@josefsson.org>	2009-02-02 17:21:17 +0100
committer	Simon Josefsson <simon@josefsson.org>	2009-02-02 17:21:17 +0100
commit	0ca6c0eeb67e3be4f6d79d775f23c3fccba97444 (patch)
tree	4d2de3c0a8bd2c7f6db2162cbe232aeb96b4894a /tests
parent	9c0849b73bb0125d8e8f7e27cdde1095bb4321e5 (diff)
download	gnutls-0ca6c0eeb67e3be4f6d79d775f23c3fccba97444.tar.gz