Commit 674e53f4 authored by Daniel Stenberg's avatar Daniel Stenberg
Browse files

OpenSSL: support longer certificate subject names 

Previously it would use a 256 byte buffer and thus cut off very long
subject names. The limit is now upped to the receive buffer size, 16K.

Bug: http://curl.haxx.se/bug/view.cgi?id=3533045
Reported by: Anthony G. Basile
parent 68857e40

lib/ssluse.c

+2 −2
Original line number Diff line number Diff line
@@ -2284,7 +2284,7 @@ static CURLcode servercert(struct connectdata *conn, 
  struct SessionHandle *data = conn->data;

  X509 *issuer;

  FILE *fp;

  char buffer[256];

  char *buffer = data->state.buffer;



  if(data->set.ssl.certinfo)

    /* we've been asked to gather certificate info! */
@@ -2301,7 +2301,7 @@ static CURLcode servercert(struct connectdata *conn, 
  infof (data, "Server certificate:\n");



  rc = x509_name_oneline(X509_get_subject_name(connssl->server_cert),

                          buffer, sizeof(buffer));

                         buffer, BUFSIZE);

  if(rc) {

    if(strict)

      failf(data, "SSL: couldn't get X509-subject!");