Hello !
I found the following bug (Micro$oft would call it a feature):
# openssl version
OpenSSL 0.9.7 31 Dec 2002
#
I created a CA (standard demoCA)
# CA.sh -newca
<seems OK>
I created a req using
# CA.sh -newreq
<seems OK>
I signed the req using
# CA.sh -sign
<seems OK>
When generating a crl the following happened :
# openssl ca -gencrl
Using configuration from /usr/local/ssl/openssl.cnf
Enter pass phrase for ./demoCA/private/cakey.pem:<pass entered>
-----BEGIN X509 CRL-----
<snip>
-----END X509 CRL-----
Segmentation fault
#
The revocation list between ----BEGIN X509 CRL----- and ----END X509 CRL----- seems
usable if copied from console into a file "crls.pem"
Trying -out option gives:
# openssl ca -gencrl -out crls.pem
Using configuration from /usr/local/ssl/openssl.cnf
Enter pass phrase for ./demoCA/private/cakey.pem:<pass entered>
Segmentation fault
#
Just to report this undesirable behaviour. If you'd need more contact info, you may
contact me via email: [EMAIL PROTECTED]
If I made a mistake, i'd be very pleased for getting some answers, too.
Thank you for providing openssl !
Regards,
Martin
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
