Changeset 4882


Ignore:
Timestamp:
Jul 25, 2014 7:27:37 AM (10 years ago)
Author:
bennylp
Message:

Misc #1751: added logging when TLS domain verification fails due to invalid use of wildcard. Thanks Alexander Traud for the patch

File:
1 edited

Legend:

Unmodified
Added
Removed

  • pjproject/trunk/pjsip/src/pjsip/sip_transport_tls.c

    r4869 r4882  
    16411641        } 
    16421642 
    1643         if (!matched) 
     1643        if (!matched) { 
     1644            if (pj_strnicmp2(&serv_cert->subject.cn, "*.", 2) == 0) { 
     1645                PJ_LOG(1,(tls->base.obj_name, 
     1646                    "RFC 5922 (section 7.2) does not allow TLS wildcard " 
     1647                        "certificates. Advise your SIP provider, please!")); 
     1648            } 
    16441649            ssl_info.verify_status |= PJ_SSL_CERT_EIDENTITY_NOT_MATCH; 
     1650        } 
    16451651    } 
    16461652 
Note: See TracChangeset for help on using the changeset viewer.