Make it possible to trust intermediary certificates.

Based on tiny patch from "Douglas E. Engert" <deengert@anl.gov> in <http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/3351/focus=3376>.
author: Simon Josefsson <simon@josefsson.org> 2009-02-02 17:21:17 +0100
committer: Simon Josefsson <simon@josefsson.org> 2009-02-02 17:21:17 +0100
commit: 0ca6c0eeb67e3be4f6d79d775f23c3fccba97444 (patch)
tree: 4d2de3c0a8bd2c7f6db2162cbe232aeb96b4894a /doc/TODO
parent: 9c0849b73bb0125d8e8f7e27cdde1095bb4321e5 (diff)
download: gnutls-0ca6c0eeb67e3be4f6d79d775f23c3fccba97444.tar.gz
1 files changed, 0 insertions, 2 deletions
diff --git a/doc/TODO b/doc/TODO
index d9c900a023..beec4237d8 100644
--- a/doc/TODO
+++ b/doc/TODO
@@ -48,8 +48,6 @@ Current list:
 - Support non-blocking gnutls_{dh,rsa}_params_generate2 for when there
   is not enough entropy available. 
 - Chain verifications.
-  - Short-cut the certificate verification algorithm before the
-    root if a middle-CA is trusted.
   - Check path length constraints.
   - Check keyCertSign key usages.
   - Reject extensions in v1 certificates.
author	Simon Josefsson <simon@josefsson.org>	2009-02-02 17:21:17 +0100
committer	Simon Josefsson <simon@josefsson.org>	2009-02-02 17:21:17 +0100
commit	0ca6c0eeb67e3be4f6d79d775f23c3fccba97444 (patch)
tree	4d2de3c0a8bd2c7f6db2162cbe232aeb96b4894a /doc/TODO
parent	9c0849b73bb0125d8e8f7e27cdde1095bb4321e5 (diff)
download	gnutls-0ca6c0eeb67e3be4f6d79d775f23c3fccba97444.tar.gz