[svn] GnuPG - r4396 - trunk/sm
svn author wk
cvs at cvs.gnupg.org
Fri Jan 5 12:49:20 CET 2007
Author: wk
Date: 2007-01-05 12:49:19 +0100 (Fri, 05 Jan 2007)
New Revision: 4396
Modified:
trunk/sm/ChangeLog
trunk/sm/certchain.c
Log:
Add subjectAltName to the list of known critical extensions
Modified: trunk/sm/ChangeLog
===================================================================
--- trunk/sm/ChangeLog 2006-12-22 15:28:47 UTC (rev 4395)
+++ trunk/sm/ChangeLog 2007-01-05 11:49:19 UTC (rev 4396)
@@ -1,3 +1,7 @@
+2007-01-05 Werner Koch <wk at g10code.com>
+
+ * certchain.c (unknown_criticals): Add subjectAltName.
+
2006-12-21 Werner Koch <wk at g10code.com>
* gpgsm.c: Comment mtrace feature.
Modified: trunk/sm/certchain.c
===================================================================
--- trunk/sm/certchain.c 2006-12-22 15:28:47 UTC (rev 4395)
+++ trunk/sm/certchain.c 2007-01-05 11:49:19 UTC (rev 4396)
@@ -137,6 +137,12 @@
{
static const char *known[] = {
"2.5.29.15", /* keyUsage */
+ "2.5.29.17", /* subjectAltName
+ Japanese DoCoMo certs mark them as critical. PKIX
+ only requires them as critical if subjectName is
+ empty. I don't know whether our code gracefully
+ handles such empry subjectNames but that is
+ another story. */
"2.5.29.19", /* basic Constraints */
"2.5.29.32", /* certificatePolicies */
"2.5.29.37", /* extendedKeyUsage - handled by certlist.c */
More information about the Gnupg-commits
mailing list