Red Hat Bugzilla – Bug 494350
Certificate verification failure with intermediate certificates
Last modified: 2009-09-01 08:57:23 EDT
For cadaver or neon.
Description of problem:
Certificate verification failure for servers with an intermediate certificate.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
$ gnutls-cli </dev/null --x509cafile /etc/pki/tls/certs/ca-bundle.crt \
-V -p 443 www.kth.se|grep 'certificate is'
- Peer's certificate is trusted
$ cadaver </dev/null https://www.kth.se/|head -1
WARNING: Untrusted server certificate presented for `www.kth.se':
$ cadaver </dev/null https://bugzilla.redhat.com/|head -1
Could not access / (not WebDAV-enabled?):
cadaver fails for www.kth.se
cadaver should be able to verify the certificate.
This is pretty odd - I can't see that cadaver/neon are doing anything different/wrong to gnutls-cli here.
This was an X.509v1 root cert, so, it was caused by a neon bug, now fixed. Thanks for the report.
*** This bug has been marked as a duplicate of bug 502451 ***