X509_NAME_oneline takes an X509 name and returns
it as a set of slash-separated components:
[EMAIL PROTECTED]
X509_NAME_print tries to turn it into a comma-separated
list:
c=us, o=certco, [EMAIL PROTECTED]
The problem is that it's test for "are we about to hit
another RDN" is a hack (line 376-382 of t_x509.c) that
looks for /X= or /XX= where X is an uppercase ASCII
letter. And, of course /email fails.
It's a problem because there are certs (old[?] Verisign
certs, if I recall correctly) that have "[EMAIL PROTECTED]" as
the value of the CN
component!
It seems to me that a good solution is to have both
functions call down to a common print function that
gets a "syntax" switch. I'd be willing to write
that if there's interest.
/r$
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
