Hi,
The X509V3_get_d2i never finds any extensions unless the idx argument is
NULL, which is not the intended behaviour. Here is a patch against
openssl-0.9.6g.
Regards,
Zoltan
Index: crypto/x509v3/v3_lib.c
===================================================================
RCS file: /var/cvs/openssl/crypto/x509v3/v3_lib.c,v
retrieving revision 1.1.1.1
diff -u -r1.1.1.1 v3_lib.c
--- crypto/x509v3/v3_lib.c 2002/05/10 20:33:09 1.1.1.1
+++ crypto/x509v3/v3_lib.c 2002/09/21 13:45:23
@@ -201,6 +201,7 @@
if(OBJ_obj2nid(ex->object) == nid) {
if(idx) {
*idx = i;
+ found_ex = ex;
break;
} else if(found_ex) {
/* Found more than one */
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
