]> xenbits.xensource.com Git - people/dariof/libvirt.git/commit
projects / people / dariof / libvirt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b93bd78) | patch
Fix validation of CA certificate chains
authorDaniel P. Berrange <berrange@redhat.com>
Tue, 6 Aug 2013 11:31:20 +0000 (12:31 +0100)
committerDaniel P. Berrange <berrange@redhat.com>
Thu, 8 Aug 2013 09:44:28 +0000 (10:44 +0100)
commit31d41d9268a6731e303700b5a5825a87a6f36a19
tree62e0435ca40d2c5609fe2fb753d23f8166007753tree
parentb93bd78ed36570c1afe594182df927d94ea6ebaacommit | diff
Fix validation of CA certificate chains

The code added to validate CA certificates did not take into
account the possibility that the cacert.pem file can contain
multiple (concatenated) cert data blocks. Extend the code for
loading CA certs to use the gnutls APIs for loading cert lists.
Add test cases to check that multi-level trees of certs will
validate correctly.

Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
src/rpc/virnettlscontext.c diff | blob | blame | history
tests/virnettlscontexttest.c diff | blob | blame | history
tests/virnettlshelpers.c diff | blob | blame | history
tests/virnettlshelpers.h diff | blob | blame | history
tests/virnettlssessiontest.c diff | blob | blame | history
Dario's libvirt development repository