[gnutls-devel] SSL certificate validation bugs in GnuTLS

Nikos Mavrogiannopoulos nmav at gnutls.org
Fri Feb 14 12:54:18 CET 2014


On Fri, Feb 14, 2014 at 11:15 AM, Suman Jana <suman at cs.utexas.edu> wrote:
> Hi Nikos,
> You are right. It turns out that for this bug we were using v 3.1.0
> from - ftp://ftp.gnutls.org/gcrypt/gnutls/v3.1/gnutls-3.1.0.tar.lz.
> The source code listings I sent you were also from v 3.1.0.
> I confirmed that the pathlen constraints are indeed being checked
> correctly in v 3.1.9.
> Sorry about the confusion. BTW, is it a known bug for v 3.1.0?

It is expected then. Support for pathlen constraints was added in 3.1.4.

regards,
Nikos



More information about the Gnutls-devel mailing list