[openssl-dev] [openssl.org #4239] [PATCH] fixing wildcard matching on punycode domains
Viktor Dukhovni
openssl-users at dukhovni.org
Fri Jan 15 20:34:58 UTC 2016
On Fri, Jan 15, 2016 at 03:32:12PM +0000, Zi Lin via RT wrote:
> I have this bug fix for a broken wildcard matching on punycode domain
> in OpenSSL. Specifically, the current implementation actually can't
> match "www.xn--foobar.com" against a certificate using SAN
> "*.xn--foobar.com". I filed a issue on github too.
> https://github.com/openssl/openssl/issues/419
Thanks, these are now in the 1.0.2 and master trees, fixed in the
next release.
--
Viktor.
More information about the openssl-dev
mailing list