httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 45107] Client certificate attribute UID not usable in env var SSL_CLIENT_S_DN_UID since wrong NID/OID assigned
Date Fri, 12 Jun 2009 12:23:15 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=45107


Peter Sylvester <peter.sylvester@edelweb.fr> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Keywords|                            |RFC




--- Comment #1 from Peter Sylvester <peter.sylvester@edelweb.fr>  2009-06-12 05:23:12
PST ---
OpenSSL has changed the definition of the NIDs in question some time
in the past. Until the definition of NID_Userid, the OID was simply wrong.

in the example, the x_DN is correctly formatted using an openssl function. 

The patch replaces the ifdefs and nids by an unconditional use of NID_userId

In order to maintain the possibility to compile with older versions
(without any consideration about their stability in other areas)
I suggest to use

+ #ifdef NID_userId
+    { "UID",   NID_userId                 }, /* officially see RFC 4514 */
+ #endif

Peter Sylvester

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message