[openssl-dev] [openssl.org #3665] Bug report and a patch for OpenSSL 1.0.1l (and 1.0.1k)
Stephen Henson via RT
rt at openssl.org
Mon Jan 19 16:29:43 UTC 2015
On Mon Jan 19 16:19:50 2015, rob.stradling at comodo.com wrote:
>
> Steve, while you're there...
>
> I've been caught out a few times in the past because the 'x509'
> utility
> displays the "outer" signature algorithm in the place where it should
> display the "inner" signature algorithm. This is fine when they
> match,
> but it's rather unhelpful when they don't match!
>
> Please consider this trivial patch. Thanks.
>
> diff --git a/crypto/asn1/t_x509.c b/crypto/asn1/t_x509.c
> index 89115c7..97abd51 100644
> --- a/crypto/asn1/t_x509.c
> +++ b/crypto/asn1/t_x509.c
> @@ -168,7 +168,7 @@ int X509_print_ex(BIO *bp, X509 *x, unsigned long
> nmflags, unsigned long cflag)
>
> if(!(cflag & X509_FLAG_NO_SIGNAME))
> {
> - if(X509_signature_print(bp, x->sig_alg, NULL) <= 0)
> + if(X509_signature_print(bp, ci->signature, NULL) <= 0)
> goto err;
> #if 0
> if (BIO_printf(bp,"%8sSignature Algorithm: ","") <=
> 0)
>
Ah that's a bug. It will be fixed.
Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
More information about the openssl-dev
mailing list