From: Oscar Jacobsson <[EMAIL PROTECTED]>
oscar> About half a year ago, apps/pkcs12.c was patched to use the load_*()
oscar> functions of apps/apps.c instead of its own. This patch appears to have
oscar> broken the client, as the new function prototype is:
oscar>
oscar> stack = load_certs(...)
oscar>
oscar> which is called twice in case CA certificates are passed using the
oscar> '-certfile' parameter. The second call will overwrite the original stack
oscar> pointer, meaning the certificate specified using '-in' never gets added,
oscar> and probably never freed properly.
Thanks for finding that. I've a patch that I'm going to commit as
soon as I see that it compiles. Wanna try it? Expect it within half
an hour.
--
Richard Levitte \ Spannv�gen 38, II \ [EMAIL PROTECTED]
Redakteur@Stacken \ S-168 35 BROMMA \ T: +46-8-26 52 47
\ SWEDEN \ or +46-733-72 88 11
Procurator Odiosus Ex Infernis -- [EMAIL PROTECTED]
Member of the OpenSSL development team: http://www.openssl.org/
Software Engineer, GemPlus: http://www.gemplus.com/
Unsolicited commercial email is subject to an archival fee of $400.
See <http://www.stacken.kth.se/~levitte/mail/> for more info.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
