Environment: -current, snapshot downloaded Feb 8th 2022
Architecture: amd64
The following command crashes
# openssl req -key <mykeyfile> -config <myconf> -new -x509 -days 365
-sha256 -extensions v3_ca -out <mycertfile>
openssl(59343) in free(): chunk is already free 0xa32e41b9310
Abort trap
Passing the same command to eopenssl11 from ports works without issue.
Note:
My config file contains a nameConstraints section, and if I pass in
permitted;DNS.0=.personal.lan
permitted;URI.0=.personal.lan
I additionally get
9107967210144:error:22FFF077:X509 V3
routines:func(4095):reason(119):/usr/src/lib/libcrypto/x509/x509_alt.c:658:name=DNS.1
value='.personal.lan'
Changing the constraints to
permitted;DNS.0=personal.lan
permitted;URI.0=personal.lan
removes that error but still crashes.
OpenSSL 1.1.1m accepts both nameConstraints.
