1
Author: Steve Langasek <vorlon@debian.org>
3
When using GnuTLS, the size returned for subjectAltNames includes a
4
terminating NUL whereas the size of a CN does not; account for this
5
difference when comparing certificates.
7
Partially addresses Debian bug #462588.
9
Forwarded upstream as ITS #5361.
11
Index: libraries/libldap/tls.c
12
===================================================================
13
--- libraries/libldap/tls.c (revision 1074)
14
+++ libraries/libldap/tls.c (working copy)
16
if (ntype != IS_DNS) continue;
18
/* Is this an exact match? */
19
- if ((len1 == altnamesize) && !strncasecmp(name, altname, len1)) {
20
+ if ((len1 == altnamesize - 1) && !strncasecmp(name, altname, len1)) {