cURL / Mailing Lists / curl-library / Single Mail


Re: [PATCH] gtls: stop using deprecated GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT option

From: Alessandro Ghedini <>
Date: Mon, 9 Mar 2015 11:33:13 +0100

On dom, mar 08, 2015 at 10:44:43 +0100, Dan Fandrich wrote:
> On Sun, Mar 08, 2015 at 08:39:18PM +0100, Alessandro Ghedini wrote:
> > On newer GnuTLS versions it's defined to 0, so it's basically a no-op.
> But libcurl is currently documented as working GnuTLS versions as old as 1.2.
> What happens on that version if this is removed?

Oh, right, I didn't think of that. I guess you can disregard my patch then,
since it would disable v1 CA certs support on GnuTLS versions older than 2.7.5
or so.


List admin:

Received on 2015-03-09