git.ipfire.org Git - thirdparty/hostap.git/commit

author	Jouni Malinen <jouni@codeaurora.org>
	Tue, 9 Apr 2019 13:18:19 +0000 (16:18 +0300)
committer	Jouni Malinen <j@w1.fi>
	Tue, 9 Apr 2019 13:24:38 +0000 (16:24 +0300)
commit	242e857285e5e783915290102a087a6fd9da6ebc
tree	488fceb9011387b91a8b9ab407e8e671f10a9b73	tree \| snapshot
parent	dcc0ccd5b0faab259a48c0cb6427b8b825ba4217	commit \| diff

Extend domain_match and domain_suffix_match to allow list of values

These wpa_supplicant network profile parameters could be used to specify
a single match string that would be used against the dNSName items in
subjectAltName or CN. There may be use cases where more than one
alternative match string would be useful, so extend these to allow a
semicolon delimited list of values to be used (e.g.,
"example.org;example.com"). If any of the specified values matches any
of the dNSName/CN values in the server certificate, consider the
certificate as meeting this requirement.

Signed-off-by: Jouni Malinen <jouni@codeaurora.org>

src/crypto/tls.h		diff \| blob \| blame \| history
src/crypto/tls_gnutls.c		diff \| blob \| blame \| history
src/crypto/tls_openssl.c		diff \| blob \| blame \| history
src/crypto/tls_wolfssl.c		diff \| blob \| blame \| history
src/eap_peer/eap_config.h		diff \| blob \| blame \| history
wpa_supplicant/wpa_supplicant.conf		diff \| blob \| blame \| history