clarify the description of the null byte in cert name fix

author Daniel Stenberg <daniel@haxx.se>

Sat, 1 Aug 2009 22:18:37 +0000 (22:18 +0000)

committer Daniel Stenberg <daniel@haxx.se>

Sat, 1 Aug 2009 22:18:37 +0000 (22:18 +0000)
author Daniel Stenberg <daniel@haxx.se>
Sat, 1 Aug 2009 22:18:37 +0000 (22:18 +0000)
committer Daniel Stenberg <daniel@haxx.se>
Sat, 1 Aug 2009 22:18:37 +0000 (22:18 +0000)
diff --git a/CHANGES b/CHANGES

index a69c714ba3f306511fb0b50562d9cfa0ccab7778..2f0b740154a471d0532282131a6556a449d391c4 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -27,8 +27,10 @@ Daniel Stenberg (1 Aug 2009)
    if the name in the cert was "example.com\0theatualsite.com", libcurl would
    happily verify that cert for example.com.
  
-  libcurl now better use the length of the extracted name, not assuming it is
-  zero terminated.
+  libcurl now better uses the length of the extracted name, not using the zero
+  termination for getting the string length.
+
+  This fixing only made and needed in OpenSSL interfacing code.
  
  - Tanguy Fautre pointed out that OpenSSL's function RAND_screen() (present
    only in some OpenSSL installs - like on Windows) isn't thread-safe and we
author	Daniel Stenberg <daniel@haxx.se>
	Sat, 1 Aug 2009 22:18:37 +0000 (22:18 +0000)
committer	Daniel Stenberg <daniel@haxx.se>
	Sat, 1 Aug 2009 22:18:37 +0000 (22:18 +0000)