From f992ba117fe420a7231f005e62627380689d57ab Mon Sep 17 00:00:00 2001
From: Jaakko Keränen <jaakko.keranen@iki.fi>
Date: Tue, 2 Mar 2021 13:05:02 +0200
Subject: Server certificates may also be verified by CAs

If the CA file/path are configured in preferences, trust CA verification
over manual TOFU checks.
---
 src/gmrequest.h | 1 +
 1 file changed, 1 insertion(+)

(limited to 'src/gmrequest.h')

diff --git a/src/gmrequest.h b/src/gmrequest.h
index 6d4eb2f8..9f20e0eb 100644
--- a/src/gmrequest.h
+++ b/src/gmrequest.h
@@ -36,6 +36,7 @@ enum iGmCertFlags {
     timeVerified_GmCertFlag    = iBit(3), /* has not expired */
     domainVerified_GmCertFlag  = iBit(4), /* cert matches server domain */
     haveFingerprint_GmCertFlag = iBit(5),
+    authorityVerified_GmCertFlag = iBit(6),
 };
 
 struct Impl_GmResponse {
-- 
cgit v1.2.3