Bug 880188

Description of problem:

GNUTLS cannot establish a secure connection to www.google.com because the root CA is not recognized.

Version-Release number of selected component (if applicable):

gnutls-2.8.5-4.el6_2.2.x86_64

How reproducible:

Always for me, but that depends on the www.google.com behavior.

Steps to Reproduce:
1. gnutls-cli --x509cafile /etc/pki/tls/certs/ca-bundle.crt  www.google.com

(www.redhat.com fails to verify, too.  This is probably related.)
  
Actual results:

- The hostname in the certificate matches 'www.google.com'.
- Peer's certificate issuer is not a CA
- Peer's certificate is NOT trusted
- Version: TLS1.1
- Key Exchange: RSA
- Cipher: ARCFOUR-128
- MAC: SHA1
- Compression: NULL
*** Verifying server certificate failed...


Expected results:

- The hostname in the certificate matches 'www.google.com'.
- Peer's certificate is trusted
- Version: TLS1.2
- Key Exchange: RSA
- Cipher: ARCFOUR-128
- MAC: SHA1
- Compression: NULL
- Handshake was completed

Additional info:

The server sends these certificates:

  - subject `C=US,ST=California,L=Mountain View,O=Google Inc,CN=www.google.com', issuer `C=ZA,O=Thawte Consulting (Pty) Ltd.,CN=Thawte SGC CA', RSA key 1024 bits, signed using RSA-SHA, activated `2011-10-26 00:00:00 UTC', expires `2013-09-30 23:59:59 UTC', SHA-1 fingerprint `c1956dc8a7dfb2a5a56934da09778e3a11023358'

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

 - Certificate[1] info:
  - subject `C=ZA,O=Thawte Consulting (Pty) Ltd.,CN=Thawte SGC CA', issuer `C=US,O=VeriSign\, Inc.,OU=Class 3 Public Primary Certification Authority', RSA key 1024 bits, signed using RSA-SHA, activated `2004-05-13 00:00:00 UTC', expires `2014-05-12 23:59:59 UTC', SHA-1 fingerprint `ec071003d8f5a37f42c4557f656aae8665fa4b02'

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

The CA certificate is:

X.509 Certificate Information:
        Version: 1
        Serial Number (hex): 70bae41d10d92934b638ca7b03ccbabf
        Issuer: C=US,O=VeriSign\, Inc.,OU=Class 3 Public Primary Certification Authority
        Validity:
                Not Before: Mon Jan 29 00:00:00 UTC 1996
                Not After: Tue Aug 01 23:59:59 UTC 2028
        Subject: C=US,O=VeriSign\, Inc.,OU=Class 3 Public Primary Certification Authority
        Subject Public Key Algorithm: RSA
                Modulus (bits 1024):
                        c9:5c:59:9e:f2:1b:8a:01:14:b4:10:df:04:40:db:e3
                        57:af:6a:45:40:8f:84:0c:0b:d1:33:d9:d9:11:cf:ee
                        02:58:1f:25:f7:2a:a8:44:05:aa:ec:03:1f:78:7f:9e
                        93:b9:9a:00:aa:23:7d:d6:ac:85:a2:63:45:c7:72:27
                        cc:f4:4c:c6:75:71:d2:39:ef:4f:42:f0:75:df:0a:90
                        c6:8e:20:6f:98:0f:f8:ac:23:5f:70:29:36:a4:c9:86
                        e7:b1:9a:20:cb:53:a5:85:e7:3d:be:7d:9a:fe:24:45
                        33:dc:76:15:ed:0f:a2:71:64:4c:65:2e:81:68:45:a7
                Exponent (bits 24):
                        01:00:01
        Signature Algorithm: RSA-MD2
warning: signed using a broken signature algorithm that can be forged.
        Signature:
                bb:4c:12:2b:cf:2c:26:00:4f:14:13:dd:a6:fb:fc:0a
                11:84:8c:f3:28:1c:67:92:2f:7c:b6:c5:fa:df:f0:e8
                95:bc:1d:8f:6c:2c:a8:51:cc:73:d8:a4:c0:53:f0:4e
                d6:26:c0:76:01:57:81:92:5e:21:f1:d1:b1:ff:e7:d0
                21:58:cd:69:17:e3:44:1c:9c:19:44:39:89:5c:dc:9c
                00:0f:56:8d:02:99:ed:a2:90:45:4c:e4:bb:10:a4:3d
                f0:32:03:0e:f1:ce:f8:e8:c9:51:8c:e6:62:9f:e6:9f
                c0:7d:b7:72:9c:c9:36:3a:6b:9f:4e:a8:ff:64:0d:64
Other Information:
        MD5 fingerprint:
                10fc635df6263e0df325be5f79cd6767
        SHA-1 fingerprint:
                742c3192e607e424eb4549542be1bbc53e6174e2
        Public Key Id:
                2004b5897dae6245dbb3e20c4444d0afdcaa4f58

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

I'm not sure if the MD2 algorithm is the culprit, or the Version 1 certificate.  In any case, I think this should work out of the box.