Vincent Lefevre vincent at
Mon Jun 8 11:05:59 UTC 2020

On 2020-06-08 11:31:46 +0200, Torbjorn Granlund wrote:
> Vincent Lefevre <vincent at> writes:
>   This is mentioned here (in French):
>   I can see that does not have the right certificate chain.
>   It uses the old one:
> We removed the expired key.  Thanks hello at for reporting.
> (I read the text Vincent pointed me to.  It is not very clear.)

This seems to be a combination of 2 issues:

1. The presence of an expired certificate. In Debian, this is
   (fixed a few days ago).

2. The fact that it can be chosen by gnutls even though there exists
   a valid certificate chain:
   (fixed in Debian/unstable, but not in stable (buster) yet).

Vincent Lefèvre <vincent at> - Web: <>
100% accessible validated (X)HTML - Blog: <>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)

More information about the gmp-discuss mailing list