Build certificate chains even when intermediates are wrong order

In GcrCertificateChain we respect the RFC 5246 which requires
that certificates appear in the correct order from the server:
First the endpoint, then intermediates, and (optionally the
root last).

However some servers (like hermes.jabber.org) send certificates
in an incorrect order. It seems like many SSL implementations
accept intermediate certificates out of order.

https://bugzilla.gnome.org/show_bug.cgi?id=699026