On Mon, 27 Feb 2012, Stephen Henson via RT wrote:
OK thanks it works fine now. The cause is rather subtle: when OpenSSL
reencodes a BIT STRING it normally preserves the original encoding so
this shouldn't happen. However in the case of a BIT STRING inside a Name
(X509_NAME) structure it didn't due to a bug.
Fix is here:
http://cvs.openssl.org/chngview?cn=22175
I confirm that it fixes the issue for me.
Thanks, it looks like I was trying to fix the consequence instead of the
cause :)
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [email protected]
