Hi Sebasstian, thanks for pointing that out.. in the new version of the OCSP the problem is solved as LibPKI provides the function PKI_INTEGER_get_parsed() that returns a string (which is a safer representation of an ASN1_INTEGER) which can safely be printed in the logs.
Cheers, Max On 06/14/2010 11:13 AM, Basscontrol wrote:
Hi again, another problem I addressed with a patch is the logging of serial numbers. The serials of certificates issued by a windows CA can extend the size of integers defined by the format strings for logging, which leads to log lines like: Jun 14 16:40:16 host ocspd[9587]: request for certificate serial -1 Jun 14 16:40:16 host ocspd[9587]: status VALID for -1 In an attempt to comfirm the sizing issue, I replaced the format string %ld by %lld in ocsp_response.c. Now the serials are printed. Since the format ASN1_INTEGER<> long int nor long long int, I'm not sure on how to solve this cleanly, and I'm no expert in this at all. Cheers, seBASStian
smime.p7s
Description: S/MIME Cryptographic Signature
------------------------------------------------------------------------------ ThinkGeek and WIRED's GeekDad team up for the Ultimate GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the lucky parental unit. See the prize list and enter to win: http://p.sf.net/sfu/thinkgeek-promo
_______________________________________________ Openca-Users mailing list Openca-Users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openca-users
