xrootd
|
Go to the source code of this file.
Enumerations | |
enum | HostnameValidationResult { MatchFound , MatchNotFound , NoSANPresent , MalformedCertificate , Error } |
Functions | |
HostnameValidationResult | validate_hostname (const char *hostname, const X509 *server_cert) |
HostnameValidationResult validate_hostname | ( | const char * | hostname, |
const X509 * | server_cert | ||
) |
Validates the server's identity by looking for the expected hostname in the server's certificate. As described in RFC 6125, it first tries to find a match in the Subject Alternative Name extension. If the extension is not present in the certificate, it checks the Common Name instead.
Returns MatchFound if a match was found. Returns MatchNotFound if no matches were found. Returns MalformedCertificate if any of the hostnames had a NUL character embedded in it. Returns Error if there was an error.