-/* $OpenBSD: x509_alt.c,v 1.11 2022/03/14 21:15:49 tb Exp $ */
+/* $OpenBSD: x509_alt.c,v 1.12 2022/03/26 16:34:21 tb Exp $ */
/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
* project.
*/
case GEN_DNS:
if (!x509_constraints_valid_sandns(bytes, len)) {
X509V3error(X509V3_R_BAD_OBJECT);
- ERR_asprintf_error_data("name=%s value='%s'", name, bytes);
+ ERR_asprintf_error_data("name=%s value='%.*s'", name,
+ (int)len, bytes);
goto err;
}
break;
case GEN_URI:
if (!x509_constraints_uri_host(bytes, len, NULL)) {
X509V3error(X509V3_R_BAD_OBJECT);
- ERR_asprintf_error_data("name=%s value='%s'", name, bytes);
+ ERR_asprintf_error_data("name=%s value='%.*s'", name,
+ (int)len, bytes);
goto err;
}
break;
case GEN_EMAIL:
if (!x509_constraints_parse_mailbox(bytes, len, NULL)) {
X509V3error(X509V3_R_BAD_OBJECT);
- ERR_asprintf_error_data("name=%s value='%s'", name, bytes);
+ ERR_asprintf_error_data("name=%s value='%.*s'", name,
+ (int)len, bytes);
goto err;
}
break;
-/* $OpenBSD: x509_constraints.c,v 1.25 2022/03/14 21:29:46 tb Exp $ */
+/* $OpenBSD: x509_constraints.c,v 1.26 2022/03/26 16:34:21 tb Exp $ */
/*
* Copyright (c) 2020 Bob Beck <beck@openbsd.org>
*
if (name->type == GEN_DNS) {
ASN1_IA5STRING *aname = name->d.dNSName;
+
*bytes = aname->data;
- *len = strlen(aname->data);
+ *len = aname->length;
+
return name->type;
}
if (name->type == GEN_EMAIL) {
ASN1_IA5STRING *aname = name->d.rfc822Name;
+
*bytes = aname->data;
- *len = strlen(aname->data);
+ *len = aname->length;
+
return name->type;
}
if (name->type == GEN_URI) {
ASN1_IA5STRING *aname = name->d.uniformResourceIdentifier;
+
*bytes = aname->data;
- *len = strlen(aname->data);
+ *len = aname->length;
+
return name->type;
}
if (name->type == GEN_DIRNAME) {
X509_NAME *dname = name->d.directoryName;
+
if (!dname->modified || i2d_X509_NAME(dname, NULL) >= 0) {
*bytes = dname->canon_enc;
*len = dname->canon_enclen;
+
return name->type;
}
}
if (name->type == GEN_IPADD) {
*bytes = name->d.ip->data;
*len = name->d.ip->length;
+
return name->type;
}
+
return 0;
}
*error = X509_V_ERR_UNSUPPORTED_NAME_SYNTAX;
goto err;
}
- if ((vname->name = strdup(bytes)) == NULL) {
+ if ((vname->name = strndup(bytes, len)) == NULL) {
*error = X509_V_ERR_OUT_OF_MEM;
goto err;
}
case GEN_DNS:
if (!x509_constraints_valid_domain_constraint(bytes, len))
goto err;
- if ((name->name = strdup(bytes)) == NULL) {
+ if ((name->name = strndup(bytes, len)) == NULL) {
error = X509_V_ERR_OUT_OF_MEM;
goto err;
}
}
if (!x509_constraints_valid_domain_constraint(bytes, len))
goto err;
- if ((name->name = strdup(bytes)) == NULL) {
+ if ((name->name = strndup(bytes, len)) == NULL) {
error = X509_V_ERR_OUT_OF_MEM;
goto err;
}
case GEN_URI:
if (!x509_constraints_valid_domain_constraint(bytes, len))
goto err;
- if ((name->name = strdup(bytes)) == NULL) {
+ if ((name->name = strndup(bytes, len)) == NULL) {
error = X509_V_ERR_OUT_OF_MEM;
goto err;
}
projects / openbsd / commitdiff