The fix is the first part of the patch (confirmReq does not set
$parsed and calls getParsed() every time).
The second part of the patch is just to draw attention to that code
where control gets when signer is not known and, yet, tries to use it.
Regards,
Julio
Index: openca-0.9/src/cgi-bin/cgi-raserver/cmds/confirmReq
===================================================================
RCS file: /cvsroot/openca/openca-0.9/src/cgi-bin/cgi-raserver/cmds/confirmReq,v
retrieving revision 1.3
diff -u -u -r1.3 confirmReq
--- openca-0.9/src/cgi-bin/cgi-raserver/cmds/confirmReq 2001/10/11 10:56:19 1.3
+++ openca-0.9/src/cgi-bin/cgi-raserver/cmds/confirmReq 2001/10/19 12:41:51
@@ -37,7 +37,7 @@
# check the public key
## Check if there are certificates with the same keys
my @certList = $db->searchItems( DATATYPE=> "CERTIFICATE",
- PUBLIC_KEY => $parsed->{PUBLIC_KEY});
+ PUBLIC_KEY => $req->getParsed()->{PUBLIC_KEY});
my $errorString = "A Certificate with the same public key exists! <br>\n".
"This is a keycompromise of the certificates with the serial:\n".
@@ -63,6 +63,7 @@
$signer = libGetSignatureObject( OBJECT=>$item );
if ( not $signer ) {
$sigStatus = "<FONT COLOR=\"Red\">Error $errno</FONT><br><br>$errval";
+ # This is bogus, we do not have a signer...
my $sigCert = new OpenCA::X509 ( SHELL => $cryptoShell,
DATA => $signer->getSigner()->{CERTIFICATE});
_______________________________________________
OpenCA-Devel mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-devel
