[sr #107619] Check hostname of certificate failed with two subdomains in hostname
anonymous
INVALID.NOREPLY at gnu.org
Tue Mar 8 13:50:48 CET 2011
Follow-up Comment #1, sr #107619 (project gnutls):
RFC2818 defines what certificates should contain for HTTPS servers. Unless
there is a similar document for IRC servers, I'd consider that applicable and
see it as problem in the freenode certificate.
RFC2818 is pretty explicit on that:
Names may contain the wildcard character * which is considered to match any
single domain name component or component fragment. E.g., *.a.com matches
foo.a.com but not bar.foo.a.com. f*.com matches foo.com but not bar.com.
You could however use your custom matching function.
regards,
--nmav
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/support/?107619>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/
More information about the Gnutls-devel
mailing list