crypt32: Only accept trailing NULLs in a certificate common name.
Erich E. Hoover
ehoover at mines.edu
Tue Jan 31 12:17:03 CST 2012
On Tue, Jan 31, 2012 at 11:10 AM, Juan Lang <juan.lang at gmail.com> wrote:
> ...
> Well, sort of. The byte-by-byte comparison takes place component by
> component. The boundary between each component is defined by the
> presence of a '.'. That's why, in my example, I have an embedded NULL
> immediately prior to a '.'. After the end of each component is found,
> it's passed to match_domain_component. In the current git version,
> each component strips a NULL, hence an embedded NULL is accepted. In
> the version I sent, only trailing NULL(s) are removed.
> ...
Wow, I clearly didn't read that you moved the code over to
match_common_name. Apparently I'm not quite conscious today, my
apologies!
Erich Hoover
ehoover at mines.edu
More information about the wine-devel
mailing list