[Net-ssleay-devel] [Fwd: [rt.cpan.org #39570] CRL checking like documented segfaults - documentation wrong, patch included]
sampo at symlabs.com
sampo at symlabs.com
Wed Sep 24 19:34:50 UTC 2008
Are you getting these mails directly from cpan?
--Sampo
---------------------------- Original Message ----------------------------
Subject: [rt.cpan.org #39570] CRL checking like documented segfaults -
documentation wrong, patch included
From: "Steffen Ullrich via RT" <bug-Net-SSLeay at rt.cpan.org>
Date: Wed, September 24, 2008 10:00
To: undisclosed-recipients:;
--------------------------------------------------------------------------
Wed Sep 24 04:00:00 2008: Request 39570 was acted upon.
Transaction: Ticket created by SULLR
Queue: Net-SSLeay
Subject: CRL checking like documented segfaults - documentation wrong,
patch included
Broken in: 1.31_01, 1.31_02, 1.32, 1.33_01, 1.34, 1.35
Severity: Normal
Owner: Nobody
Requestors: Steffen_Ullrich at genua.de
Status: new
Ticket <URL: http://rt.cpan.org/Ticket/Display.html?id=39570 >
Hi,
while working on http://rt.cpan.org/Ticket/Display.html?id=39277
(Bug report for IO::Socket::SSL crash with SSL_check_crl) I've
noticed, that the wrong code in IO::Socket::SSL comes probably from
the Net::SSLeay man page. There it states:
| You can enable Net::SSLeay CRL checking like this:
| &Net::SSLeay::X509_STORE_CTX_set_flags
| (&Net::SSLeay::CTX_get_cert_store($ssl),
| &Net::SSLeay::X509_V_FLAG_CRL_CHECK);
Which would cause a segmentation fault. It should be:
- &Net::SSLeay::X509_STORE_CTX_set_flags
+ &Net::SSLeay::X509_STORE_set_flags
Regards,
Steffen (cpan: SULLR)
More information about the Net-ssleay-devel
mailing list