• D
    Fix validation of CA certificate chains · 31d41d92
    Daniel P. Berrange 提交于
    The code added to validate CA certificates did not take into
    account the possibility that the cacert.pem file can contain
    multiple (concatenated) cert data blocks. Extend the code for
    loading CA certs to use the gnutls APIs for loading cert lists.
    Add test cases to check that multi-level trees of certs will
    validate correctly.
    Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
    31d41d92
virnettlscontext.c 44.8 KB