(ITS#5361) cert verification failures with GnuTLS and DNS subjectAltName

Andreas Metzler ametzler at downhill.at.eu.org
Sun Feb 17 18:12:17 CET 2008


On 2008-02-15 Nikos Mavrogiannopoulos <nmav at gnutls.org> wrote:
[...]
> Actually you are right. The return value shouldn't be increased (this also 
> happens in the other similar functions). I've corrected the patch and 
> commited at:

> http://git.savannah.gnu.org/gitweb/?p=gnutls.git;a=commitdiff;h=4cc3c6b6ed00660e55559bab148021fc077da21f

Nice to ses that this is applied in origin/gnutls_2_2_x, too. However
now there is a failure in the tests/pathlen. certtool fails on
no-ca-or-pathlen.pem

error: get_crl_dist_points2: The given memory buffer is too short to hold
parameters.

cu andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'





More information about the Gnutls-devel mailing list