On Fri, Jan 15, 2016 at 03:32:12PM +0000, Zi Lin via RT wrote: > I have this bug fix for a broken wildcard matching on punycode domain > in OpenSSL. Specifically, the current implementation actually can't > match "www.xn--foobar.com" against a certificate using SAN > "*.xn--foobar.com". I filed a issue on github too. > https://github.com/openssl/openssl/issues/419
Thanks, these are now in the 1.0.2 and master trees, fixed in the next release. -- Viktor. _______________________________________________ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev