proposed correction:
line 219 becomes :
if (lkey && ((*keymatch & MATCH_ALL) == MATCH_ALL))
may be I miss something ..
On Wed, 2007-07-04 at 17:28 +0200, Jos Leurs wrote:
> in line 219 of p12_kiss.c
>
>
> if (lkey && ((*keymatch & MATCH_ALL) != MATCH_ALL)) {
>
>
> if (*keyid) {
> if (M_ASN1_OCTET_STRING_cmp(*keyid, lkey)) lkey
> = NULL;
> }
>
>
>
>
> In the code *keymatch is set to 0 which always leads to a comparison and
> lkey set to NULL..
>
> if :
>
> *keymatch == MATCH_ALL
>
> there will be no comparison ...
>
>
> this seems to me a bit odd.
>
> I found this problem having a p12 cert with different ca lkey then pkey
> lkey...
>
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> Development Mailing List [email protected]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]
