Bugfixes for noemailDN option. Make it use the

correct name (instead of NULL) if nomailDN is
not set, fix memory leaks and retain DN structure
when deleting emailAddress.
This commit is contained in:
Dr. Stephen Henson 2001-10-27 17:03:20 +00:00
parent 1586365835
commit 437db75b94

View File

@ -2046,29 +2046,25 @@ again2:
/* Build the correct Subject if no e-mail is wanted in the subject */ /* Build the correct Subject if no e-mail is wanted in the subject */
/* and add it later on because of the method extensions are added (altName) */ /* and add it later on because of the method extensions are added (altName) */
if (!email_dn) if (email_dn)
dn_subject = subject;
else
{ {
if ((dn_subject=X509_NAME_new()) == NULL) X509_NAME_ENTRY *tmpne;
/* Its best to dup the subject DN and then delete any email
* addresses because this retains its structure.
*/
if (!(dn_subject = X509_NAME_dup(subject)))
{ {
BIO_printf(bio_err,"Memory allocation failure\n"); BIO_printf(bio_err,"Memory allocation failure\n");
goto err; goto err;
} }
while((i = X509_NAME_get_index_by_NID(dn_subject,
for (i=0; i<X509_NAME_entry_count(subject); i++) NID_pkcs9_emailAddress, -1) >= 0))
{ {
ne= X509_NAME_get_entry(subject,i); tmpne = X509_NAME_get_entry(dn_subject, i);
obj=X509_NAME_ENTRY_get_object(ne); X509_NAME_delete_entry(dn_subject, i);
nid=OBJ_obj2nid(obj); X509_NAME_ENTRY_free(tmpne);
str=X509_NAME_ENTRY_get_data(ne);
if (nid == NID_pkcs9_emailAddress) continue;
if (!X509_NAME_add_entry(dn_subject,ne, -1, 0))
{
BIO_printf(bio_err,"Memory allocation failure\n");
goto err;
}
} }
} }
@ -2327,6 +2323,8 @@ err:
X509_NAME_free(CAname); X509_NAME_free(CAname);
if (subject != NULL) if (subject != NULL)
X509_NAME_free(subject); X509_NAME_free(subject);
if ((dn_subject != NULL) && !email_dn)
X509_NAME_free(dn_subject);
if (tmptm != NULL) if (tmptm != NULL)
ASN1_UTCTIME_free(tmptm); ASN1_UTCTIME_free(tmptm);
if (ok <= 0) if (ok <= 0)