cURL
Haxx ad
libcurl
Mailing Lists

curl's project page on SourceForge.net

Sponsors:
Haxx

cURL > Mailing List > Monthly Index > Single Mail

curl-tracker Archives

[ curl-Bugs-3533045 ] subject line of SSL certificates are truncated

From: SourceForge.net <noreply_at_sourceforge.net>
Date: Fri, 08 Jun 2012 15:10:43 -0700

Bugs item #3533045, was opened at 2012-06-07 16:48
Message generated for change (Comment added) made by bagder
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=100976&aid=3533045&group_id=976

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: https
>Group: bad behaviour
>Status: Closed
>Resolution: Fixed
Priority: 5
Private: No
Submitted By: Anthony G. Basile (blueness)
Assigned to: Daniel Stenberg (bagder)
Summary: subject line of SSL certificates are truncated

Initial Comment:
The subject line of SSL certificates are truncated after 256 characters as reported by curl -v. For example

    curl -v https://www.paypal.com

returns

* Server certificate:
* subject: 1.3.6.1.4.1.311.60.2.1.3=US; 1.3.6.1.4.1.311.60.2.1.2=Delaware; businessCategory=Private Organization; serialNumber=3014267; C=US; postalCode=95131-2021; ST=California; L=San Jose; street=2211 N 1st St; O=PayPal, Inc.; OU=PayPal Production; CN=www.paypal.

Note the CN= value truncates "com."

This was hit with curl 7.26.0 but is in all versions since commit https://github.com/bagder/curl/commit/4c9768565ec3a9baf26ac8a547bca6e42cc64fa5#L11L1652.

There appears to be no adverse effects in terms of establishing trust, but the output is confusing to users.

See the downstream Gentoo bug for more details: https://bugs.gentoo.org/show_bug.cgi?id=419703

----------------------------------------------------------------------

Comment By: Daniel Stenberg (bagder)
Date: 2012-06-08 15:10

Message:
Thanks for the report, this problem is now fixed in the git repository.

To try it out, you either checkout/update your git clone:
http://curl.haxx.se/source.html

or you try tomorrow's daily snapshot: http://curl.haxx.se/snapshots/

----------------------------------------------------------------------

You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=100976&aid=3533045&group_id=976
Received on 2012-06-09

These mail archives are generated by hypermail.

donate! Page updated January 05, 2012.
web site info

File upload with ASP.NET