[Bug 29018] Allow interactive TLS certificate verification

bugzilla-daemon at freedesktop.org bugzilla-daemon at freedesktop.org
Fri Jul 30 13:24:31 CEST 2010


https://bugs.freedesktop.org/show_bug.cgi?id=29018

--- Comment #9 from Simon McVittie <simon.mcvittie at collabora.co.uk> 2010-07-30 04:24:31 PDT ---
I forgot to mention before: in the crypto libraries we'll be using, is it more
convenient for CertificateChainData to be an aay, or would it be more
conventional to have the entire certificate chain as a single blob of bytes?

Also, should we be specifying an order for the certificate chain, at least for
the X.509 case? I think there's some convention that the cert being verified
should be at one end, intermediate CAs should be in the middle, and the root CA
cert (if present) should be at the other, but I can never remember which
direction the chain goes in.

-- 
Configure bugmail: https://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.



More information about the telepathy-bugs mailing list