[prev in list] [next in list] [prev in thread] [next in thread]
List: apache-httpd-bugs
Subject: DO NOT REPLY [Bug 45875] New: X509 DN components with multiple
From: bugzilla () apache ! org
Date: 2008-09-24 13:35:48
Message-ID: bug-45875-7868 () https ! issues ! apache ! org/bugzilla/
[Download RAW message or body]
https://issues.apache.org/bugzilla/show_bug.cgi?id=45875
Summary: X509 DN components with multiple occurence not available
to apr_table_get
Product: Apache httpd-2
Version: 2.2.9
Platform: PC
OS/Version: Linux
Status: NEW
Severity: major
Priority: P2
Component: mod_ssl
AssignedTo: bugs@httpd.apache.org
ReportedBy: weisz@vcpc.univie.ac.at
apr_table_get retrieves the values stored in a table whose contents are defined
by the array ssl_hook_Fixup_vars[] defined in modules/ssl/ssl_engine_kernel.c.
This array is used by the function ssl_hook_Fixup() purely as is, and thus the
generated table doesn't have entries for multiple occurences of X509 DN
components (e.g. SSL_CLIENT_S_DN_OU_n, n being a non-negative integer).
This table provides through the use of function apr_table_get() access to the
contents of certificates to external functions like PHP's apache_getenv() which
are thus unable to retrieve components that occur multiple times in a DN,
except for the first occurance.
Please amend ssl_hook_Fixup() to also take care of these multiple occurences.
The function ssl_var_lookup() called inside ssl_hook_Fixup() can already return
the correct value, but ssl_hook_Fixup() has to provide the table entry.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic