Bug#607616: libgnutls26: the GnuTLS searches CA certs by subject and stops on first? (fails on more CA with the same subj)

[Nikos Mavrogiannopoulos]

You cannot reorder certificates on will. For TLS/SSL the certificates
have to be ordered (from RFC5246):
"This is a sequence (chain) of certificates.  The sender's
certificate MUST come first in the list.  Each following
certificate MUST directly certify the one preceding it."

Gnutls is strict with that.

regards,
Nikos