diff options
author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2014-10-09 15:53:47 +0200 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2014-10-09 15:53:47 +0200 |
commit | 6abfcba20afed7977a7111dc11ed58ee1ae247db (patch) | |
tree | 30bf5af6cf9501970309a3374c1f402cd85075cd /lib/includes/gnutls | |
parent | 710c80b1f61acffc050a55f686aee448445628da (diff) | |
download | gnutls-6abfcba20afed7977a7111dc11ed58ee1ae247db.tar.gz |
removed flag GNUTLS_VERIFY_KEY_PURPOSE_ON_INTERMEDIATE
Diffstat (limited to 'lib/includes/gnutls')
-rw-r--r-- | lib/includes/gnutls/x509.h | 5 |
1 files changed, 0 insertions, 5 deletions
diff --git a/lib/includes/gnutls/x509.h b/lib/includes/gnutls/x509.h index 0314bbe38a..5ae554bbec 100644 --- a/lib/includes/gnutls/x509.h +++ b/lib/includes/gnutls/x509.h @@ -811,10 +811,6 @@ int gnutls_pkcs7_delete_crl(gnutls_pkcs7_t pkcs7, int indx); * using certificate revocation lists or the available OCSP data. * @GNUTLS_VERIFY_DO_NOT_ALLOW_WILDCARDS: When including a hostname * check in the verification, do not consider any wildcards. - * @GNUTLS_VERIFY_KEY_PURPOSE_ON_INTERMEDIATE: When verifying a certificate - * and asking for a particular key purpose, require that any intermediate certificates - * bear this key purpose as well. This is not enabled by default as this is not part - * of RFC5280, but rather is an extension of CA Forum (baseline requirements 1.1.9). * * Enumeration of different certificate verify flags. Additional * verification profiles can be set using GNUTLS_PROFILE_TO_VFLAGS() @@ -833,7 +829,6 @@ typedef enum gnutls_certificate_verify_flags { GNUTLS_VERIFY_ALLOW_UNSORTED_CHAIN = 1 << 10, GNUTLS_VERIFY_DO_NOT_ALLOW_UNSORTED_CHAIN = 1 << 11, GNUTLS_VERIFY_DO_NOT_ALLOW_WILDCARDS = 1 << 12, - GNUTLS_VERIFY_KEY_PURPOSE_ON_INTERMEDIATE = 1 << 13 /* cannot exceed 2^24 due to GNUTLS_PROFILE_TO_VFLAGS() */ } gnutls_certificate_verify_flags; |