NetBSD Problem Report #24458

Received: (qmail 13884 invoked by uid 605); 17 Feb 2004 14:43:26 -0000
Message-Id: <200402171443.i1HEhIxt008872@pip.acrys.com>
Date: Tue, 17 Feb 2004 15:43:18 +0100 (MET)
From: Frank Kardel <kardel@pip.acrys.com>
Sender: gnats-bugs-owner@NetBSD.org
Reply-To: kardel@pip.acrys.com
To: gnats-bugs@gnats.NetBSD.org
Subject: openssl config parser (variable substitution) broken
X-Send-Pr-Version: 3.95

>Number:         24458
>Category:       bin
>Synopsis:       openssl.cnf cannot correctly do variable substitution
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    bin-bug-people
>State:          closed
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Tue Feb 17 14:44:00 +0000 2004
>Closed-Date:    Sun Oct 08 22:31:23 +0000 2006
>Last-Modified:  Sun Oct 08 22:31:23 +0000 2006
>Originator:     Frank Kardel
>Release:        NetBSD 1.6ZK
>Organization:

>Environment:


System: NetBSD pip 1.6ZK NetBSD 1.6ZK (SYSPIP_ISDN) #1: Sun Feb 15 15:42:43 MET 2004 kardel@pip:/fs/IC35L120AVV207-0-e/src/NetBSD/netbsd/sys/arch/i386/compile/obj.i386/SYSPIP_ISDN i386
Architecture: i386
Machine: i386
>Description:
	After upgrading my notbook to -current openssl couldn't
	correctly read private keys any more. openssl.cnf
	had lines like this:
	dir		= ${ENV::CA_ROOT}/userCA
	certname        = user-ca1
	private_key     = ${dir}/private/${certname}.key

	Before the upgrade this was correcly expanded.
	Now expansion stops with the p from private. When only
	one variable needs to be expanded things work. The
	second expansion seems to mess up.
>How-To-Repeat:
	try using openssl ca with a configuration using the
	above pattern.

>Fix:
	1) check for errors in the config parser
	2) use only one substitution a workaround
>Release-Note:
>Audit-Trail:
From: Frank Kardel <kardel@netbsd.org>
To: gnats-bugs@NetBSD.org
Cc: 
Subject: PR/24458 CVS commit: src/crypto/dist/openssl/crypto/conf
Date: Sun,  8 Oct 2006 22:21:14 +0000 (UTC)

 Module Name:	src
 Committed By:	kardel
 Date:		Sun Oct  8 22:21:14 UTC 2006

 Modified Files:
 	src/crypto/dist/openssl/crypto/conf: conf_def.c

 Log Message:
 keep len correct when substituting variables - fixes PR/24458


 To generate a diff of this commit:
 cvs rdiff -r1.7 -r1.8 src/crypto/dist/openssl/crypto/conf/conf_def.c

 Please note that diffs are not public domain; they are subject to the
 copyright notices on the relevant files.

State-Changed-From-To: open->closed
State-Changed-By: elad@netbsd.org
State-Changed-When: Sun, 08 Oct 2006 22:31:23 +0000
State-Changed-Why:
kardel@ just fixed it


>Unformatted:
NetBSD Home
NetBSD PR Database Search
(Contact us) $NetBSD: query-full-pr,v 1.39 2013/11/01 18:47:49 spz Exp $
$NetBSD: gnats_config.sh,v 1.8 2006/05/07 09:23:38 tsutsui Exp $
Copyright © 1994-2007 The NetBSD Foundation, Inc. ALL RIGHTS RESERVED.