[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[SCM] GNU gnutls branch, gnutls_2_8_x, updated. gnutls_2_8_3-4-g944626f

From: Simon Josefsson
Subject: [SCM] GNU gnutls branch, gnutls_2_8_x, updated. gnutls_2_8_3-4-g944626f
Date: Thu, 20 Aug 2009 17:05:15 +0000

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU gnutls".

The branch, gnutls_2_8_x has been updated
       via  944626fe48f7b469f78f363bb726d895f49bf46c (commit)
       via  7b549aaf7941cfaf3b3afa385cc360143850a32e (commit)
      from  0aef326b7d4d1e6c05c0aa8984b92186d5f618ba (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 944626fe48f7b469f78f363bb726d895f49bf46c
Author: Simon Josefsson <address@hidden>
Date:   Thu Aug 20 19:05:10 2009 +0200


commit 7b549aaf7941cfaf3b3afa385cc360143850a32e
Author: Simon Josefsson <address@hidden>
Date:   Thu Aug 20 12:21:09 2009 +0200

    Fix OpenPGP hostname comparison.


Summary of changes:
 NEWS              |    4 ++++
 lib/openpgp/pgp.c |    4 ++++
 2 files changed, 8 insertions(+), 0 deletions(-)

diff --git a/NEWS b/NEWS
index 8145303..b4a836e 100644
--- a/NEWS
+++ b/NEWS
@@ -5,6 +5,10 @@ See the end for copying conditions.
 * Version 2.8.4 (unreleased)
+** libgnutls: Make OpenPGP hostname checking work again.
+The patch to resolve the X.509 CN/SAN issue accidentally broken
+OpenPGP hostname comparison.
 ** API and ABI modifications:
 No changes since last version.
diff --git a/lib/openpgp/pgp.c b/lib/openpgp/pgp.c
index e940041..1544f14 100644
--- a/lib/openpgp/pgp.c
+++ b/lib/openpgp/pgp.c
@@ -585,6 +585,10 @@ gnutls_openpgp_crt_check_hostname (gnutls_openpgp_crt_t 
       if (ret == 0)
+         /* Length returned by gnutls_openpgp_crt_get_name includes
+            the terminating zero. */
+         dnsnamesize--;
          if (_gnutls_hostname_compare (dnsname, dnsnamesize, hostname))
            return 1;

GNU gnutls

reply via email to

[Prev in Thread] Current Thread [Next in Thread]