[openssl/openssl] 38c5f2: Fix openssl req with -addext subjectAltName=dirName
Bernd Edlinger
noreply at github.com
Tue Apr 2 15:37:58 UTC 2024
Branch: refs/heads/openssl-3.2
Home: https://github.com/openssl/openssl
Commit: 38c5f2c169a51e599b4d4435d22a50472074e54c
https://github.com/openssl/openssl/commit/38c5f2c169a51e599b4d4435d22a50472074e54c
Author: Bernd Edlinger <bernd.edlinger at hotmail.de>
Date: 2024-04-02 (Tue, 02 Apr 2024)
Changed paths:
M apps/req.c
M test/recipes/25-test_req.t
M test/test.cnf
Log Message:
-----------
Fix openssl req with -addext subjectAltName=dirName
The syntax check of the -addext fails because the
X509V3_CTX is used to lookup the referenced section,
but the wrong configuration file is used, where only
a default section with all passed in -addext lines is available.
Thus it was not possible to use the subjectAltName=dirName:section
as an -addext parameter. Probably other extensions as well.
This change affects only the syntax check, the real extension
was already created with correct parameters.
Reviewed-by: Dmitry Belyavskiy <beldmit at gmail.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23669)
(cherry picked from commit 387418893e45e588d1cbd4222549b5113437c9ab)
To unsubscribe from these emails, change your notification settings at https://github.com/openssl/openssl/settings/notifications
More information about the openssl-commits
mailing list