[gnutls-devel] GnuTLS | Valid cert fails to verify due to different DN encodings (#553)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Wed Sep 5 07:20:04 CEST 2018


The dn comparison rules are a long sad story. Gnutls has followed the simple approach to compare dn for simple equality and that works in practice very well - noone complained since our first days. Note however that what you describe above is incorrect even according to rfc5280 comparison rules. Which implementation created that certificate? Have you reported that issue to them? https://tools.ietf.org/html/rfc5280#section-7.1

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/553#note_98956888
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20180905/ed60b945/attachment.html>


More information about the Gnutls-devel mailing list