|Subject:||Segfault in P_X509_get_crl_distribution_points|
|Date:||Wed, 06 Mar 2013 20:45:13 +0000|
|To:||bug-Net-SSLeay [...] rt.cpan.org|
|From:||Robert Duncan <rad [...] netcraft.com>|
Hi, I've found a bug when running P_X509_get_crl_distribution_points on an X509 certificate with values in the CDP extension which do not have an ia5 string will cause a segmentation fault when accessed. I've included a test case and a proposed patch which resolves the problem by only include GEN_URI strings. Note that in the test case I have provided this returns 2 items (both of the URIs and not the DirName) rather than include all 3. I'm not necessarily convinced that this is the best option - I am open to a different approach. -- Robert Duncan Netcraft, 2 Belmont, Bath, UKPhone: +44 1225 580672 Fax: +44 1225 448600
Message body is not shown because sender requested not to inline it.