> [daniel-marsch...@viathinksoft.de - Thu Jul 14 17:10:01 2011]:
>
> Bug "#4" (my 2nd email) is also open. After your fix, every padded OID
> at the policy-section does create a hex-dump with "-text". Mh, I wonder
> why the policy-OIDs are always handled different.
>
This is actually expected behaviour. If there is a parsing error in any
part of an ASN1 structure the operation fails. Extensions are handled
separately in certificate text output and the parsing error results in a
fallback where a dump is given of the extension instead. That's the
default behaviour which can be customised with extension flags. For
example using the x509 utility and the option "-certopt ext_error" you get:
X509v3 Certificate Policies:
<Parse Error>
Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majord...@openssl.org
