Bug#885127: GnuTLS update breaks self-signed certificates

Andreas Metzler ametzler at bebt.de
Fri Dec 29 14:48:00 UTC 2017

Control: forwarded -1 https://gitlab.com/gnutls/gnutls/issues/347

On 2017-12-29 Rémi Denis-Courmont <remi at remlab.net> wrote:
> The version of GnuTLS in Debian incorrectly flags self-signed certificates as 
> insecure certificate chain algorithm. This makes no sense; the flag is for 
> certificate chains using insecure algorithms such as MD2, MD5 and SHA-1.

> This is reproducible also with gnutls-bin (both with Debian and upstream 
> GnuTLS):


I have forward the issue upstream.

cu Andreas
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'

More information about the Pkg-gnutls-maint mailing list