[PATCH] apps/ca.c crl issuer patch

Juergen Lesny Mon, 15 Jul 2002 04:56:24 -0700

Hello,

OpenSSL 0.9.6a and 0.9.7-stable generates CRLs with different
Issuers. While the old version is doing what I believe to be correct,
the stable version uses the CA X.509 certificate issuer instead of the
subject as CRL Issuer.


This patch  set the  CRL issuer to the value of the X.509 subject.

Gretings,

        J�rgen Lesny.
-- 

  Mein Name ist Loppenstedt ............. URL: http://home.in.tum.de/~lesnyj/  
  Xaver Loppenstedt ................................. EMail: [EMAIL PROTECTED]  
  Aber wer sind Sie? ........................................................

--- apps/ca.c.orig      Mon Jul 15 13:15:04 2002
+++ apps/ca.c   Mon Jul 15 13:18:41 2002
@@ -1456,7 +1456,7 @@
 
                if (verbose) BIO_printf(bio_err,"making CRL\n");
                if ((crl=X509_CRL_new()) == NULL) goto err;
-               if (!X509_CRL_set_issuer_name(crl, X509_get_issuer_name(x509))) goto 
err;
+               if (!X509_CRL_set_issuer_name(crl, X509_get_subject_name(x509))) goto 
+err;
 
                tmptm = ASN1_TIME_new();
                if (!tmptm) goto err;

[PATCH] apps/ca.c crl issuer patch

Reply via email to