[Patch] Non-permissive subjectAltName wildcard

Nikos Mavrogiannopoulos nmav at gnutls.org
Mon May 5 07:19:06 CEST 2008

Jean-Philippe Garcia Ballester wrote:

>> Probably your point is for wildcards such as test*.gnutls.org?
>   The truth is that the real problem was the first thing above. While fixing 
> this issue, I read the RFC and found the two others “problems”.
>   I do not a have a “real world” example, since I don't have any use for this. 
> I just thought that if the RFC allows it, then the software should.
>   Maybe it could be of use for self-signed certificates used in private 
> intranets.

I'm quite convinced and like this patch. I'll check the code and will
include it on the development branch I'm working on as soon.


More information about the Gnutls-devel mailing list