You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.
@fniephaus commented on this pull request.
In platforms/unix/plugins/SqueakSSL/sqUnixOpenSSL.c:
> @@ -432,19 +438,20 @@ sqInt sqConnectSSL(sqInt handle, char* srcBuf, sqInt srcLen, char *dstBuf, sqInt
if (ssl->serverName) {
const size_t serverNameLength = strnlen(ssl->serverName, MAX_HOSTNAME_LENGTH);
-#ifdef X509_CHECK_FLAG_SINGLE_LABEL_SUBDOMAINS
- if(ssl->loglevel) printf("sqConnectSSL: X509_check_host.");
- /* Try IP first, expect INVALID_IP_STRING to continue with hostname */
- matched = (enum sqMatchResult) X509_check_ip_asc(cert, ssl->serverName, 0);
- if (matched == INVALID_IP_STRING) {
- matched = (enum sqMatchResult) X509_check_host(cert, ssl->serverName, serverNameLength, X509_CHECK_FLAG_SINGLE_LABEL_SUBDOMAINS, NULL);
- }
-#else
- matched = sqVerifyIP(ssl, cert, ssl->serverName, serverNameLength);
- if (matched == INVALID_IP_STRING) {
- matched = sqVerifyDNS(ssl, cert, ssl->serverName, serverNameLength);
+ //#ifdef X509_CHECK_FLAG_SINGLE_LABEL_SUBDOMAINS
It doesn't remind me of anything, maybe add a comment? ;)
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.