[Net-ssleay-devel] Net-SSLeay-1.33_01 X509_get_subjectAltNames segfaults on test.eonis.net:443
Mike McCauley
mikem at open.com.au
Tue Feb 19 23:26:47 UTC 2008
Hello Achim.
thanks for reporting this.
there was a problem with X509_get_subjectAltNames, where some types of Alt
Name (eg DIRNAMEs) were not properly handled, resulting in seg faults.
The certificate from test.eonis.net contained a DIRNAME type sub alt name.
I have changed the CVS to fix this problem.
Cheers.
On Wednesday 20 February 2008 06:55, Achim Grolms wrote:
> Hello,
>
> testing the Net-SSLeay-1.33_01 release
> I get a segfault when connecting to test.eonis.net:443.
> and use the X509_get_subjectAltNames function.
>
> Find my testcode below.
> Can you reproduce this segfault?
>
> Thank you,
> Achim
>
>
>
> #!/usr/bin/perl -w
>
> use strict;
>
> use ExtUtils::testlib;
>
> use Net::SSLeay 1.33 qw(sslcat);
>
> my $server = 'test.eonis.net';
> my $port = 443;
>
> my ($page, $response, $server_cert) = sslcat ($server, $port, 'GET /
> HTTP/1.0');
>
> $server_cert || die "sslcat returned error: $response";
>
> my $x509_name = Net::SSLeay::X509_get_subject_name($server_cert);
> my $text = Net::SSLeay::X509_NAME_get_text_by_NID ($x509_name, 13 );
>
> print "Subject: " . Net::SSLeay::X509_NAME_oneline($x509_name) . "\n",
> "CN: $text\n";
>
> my @altnames = Net::SSLeay::X509_get_subjectAltNames( $server_cert );
> print "\n count altnames: ", scalar(@altnames), "\n"
>
> _______________________________________________
> Net-ssleay-devel mailing list
> Net-ssleay-devel at lists.alioth.debian.org
> http://lists.alioth.debian.org/mailman/listinfo/net-ssleay-devel
--
Mike McCauley mikem at open.com.au
Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
9 Bulbul Place Currumbin Waters QLD 4223 Australia http://www.open.com.au
Phone +61 7 5598-7474 Fax +61 7 5598-7070
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP etc on Unix, Windows, MacOS, NetWare etc.
More information about the Net-ssleay-devel
mailing list