NetBSD Problem Report #24458
Received: (qmail 13884 invoked by uid 605); 17 Feb 2004 14:43:26 -0000
Message-Id: <200402171443.i1HEhIxt008872@pip.acrys.com>
Date: Tue, 17 Feb 2004 15:43:18 +0100 (MET)
From: Frank Kardel <kardel@pip.acrys.com>
Sender: gnats-bugs-owner@NetBSD.org
Reply-To: kardel@pip.acrys.com
To: gnats-bugs@gnats.NetBSD.org
Subject: openssl config parser (variable substitution) broken
X-Send-Pr-Version: 3.95
>Number: 24458
>Category: bin
>Synopsis: openssl.cnf cannot correctly do variable substitution
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: bin-bug-people
>State: closed
>Class: sw-bug
>Submitter-Id: net
>Arrival-Date: Tue Feb 17 14:44:00 +0000 2004
>Closed-Date: Sun Oct 08 22:31:23 +0000 2006
>Last-Modified: Sun Oct 08 22:31:23 +0000 2006
>Originator: Frank Kardel
>Release: NetBSD 1.6ZK
>Organization:
>Environment:
System: NetBSD pip 1.6ZK NetBSD 1.6ZK (SYSPIP_ISDN) #1: Sun Feb 15 15:42:43 MET 2004 kardel@pip:/fs/IC35L120AVV207-0-e/src/NetBSD/netbsd/sys/arch/i386/compile/obj.i386/SYSPIP_ISDN i386
Architecture: i386
Machine: i386
>Description:
After upgrading my notbook to -current openssl couldn't
correctly read private keys any more. openssl.cnf
had lines like this:
dir = ${ENV::CA_ROOT}/userCA
certname = user-ca1
private_key = ${dir}/private/${certname}.key
Before the upgrade this was correcly expanded.
Now expansion stops with the p from private. When only
one variable needs to be expanded things work. The
second expansion seems to mess up.
>How-To-Repeat:
try using openssl ca with a configuration using the
above pattern.
>Fix:
1) check for errors in the config parser
2) use only one substitution a workaround
>Release-Note:
>Audit-Trail:
From: Frank Kardel <kardel@netbsd.org>
To: gnats-bugs@NetBSD.org
Cc:
Subject: PR/24458 CVS commit: src/crypto/dist/openssl/crypto/conf
Date: Sun, 8 Oct 2006 22:21:14 +0000 (UTC)
Module Name: src
Committed By: kardel
Date: Sun Oct 8 22:21:14 UTC 2006
Modified Files:
src/crypto/dist/openssl/crypto/conf: conf_def.c
Log Message:
keep len correct when substituting variables - fixes PR/24458
To generate a diff of this commit:
cvs rdiff -r1.7 -r1.8 src/crypto/dist/openssl/crypto/conf/conf_def.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
State-Changed-From-To: open->closed
State-Changed-By: elad@netbsd.org
State-Changed-When: Sun, 08 Oct 2006 22:31:23 +0000
State-Changed-Why:
kardel@ just fixed it
>Unformatted:
(Contact us)
$NetBSD: query-full-pr,v 1.39 2013/11/01 18:47:49 spz Exp $
$NetBSD: gnats_config.sh,v 1.8 2006/05/07 09:23:38 tsutsui Exp $
Copyright © 1994-2007
The NetBSD Foundation, Inc. ALL RIGHTS RESERVED.