Sanitize non-printables in X509_NAME_oneline output

author Viktor Dukhovni <postfix-users@dukhovni.org>

Thu, 19 Jun 2014 14:58:14 +0000 (10:58 -0400)

committer Viktor Dukhovni <postfix-users@dukhovni.org>

Thu, 26 May 2016 04:41:55 +0000 (00:41 -0400)
author Viktor Dukhovni <postfix-users@dukhovni.org>
Thu, 19 Jun 2014 14:58:14 +0000 (10:58 -0400)
committer Viktor Dukhovni <postfix-users@dukhovni.org>
Thu, 26 May 2016 04:41:55 +0000 (00:41 -0400)
diff --git a/postfix/src/tls/tls_server.c b/postfix/src/tls/tls_server.c

index cc81376d4c0f63a7cc0ce4b4e6f6aea3f9f1e8f5..8d4d0c523e30d7ae8f28c5f84bef58beb8a77150 100644 (file)
--- a/postfix/src/tls/tls_server.c
+++ b/postfix/src/tls/tls_server.c
@@ -863,10 +863,10 @@ TLS_SESS_STATE *tls_server_post_accept(TLS_SESS_STATE *TLScontext)
         if (TLScontext->log_mask & TLS_LOG_VERBOSE) {
             X509_NAME_oneline(X509_get_subject_name(peer),
                               buf, sizeof(buf));
-           msg_info("subject=%s", buf);
+           msg_info("subject=%s", printable(buf, '?'));
             X509_NAME_oneline(X509_get_issuer_name(peer),
                               buf, sizeof(buf));
-           msg_info("issuer=%s", buf);
+           msg_info("issuer=%s", printable(buf, '?'));
         }
         TLScontext->peer_CN = tls_peer_CN(peer, TLScontext);
         TLScontext->issuer_CN = tls_issuer_CN(peer, TLScontext);
author	Viktor Dukhovni <postfix-users@dukhovni.org>
	Thu, 19 Jun 2014 14:58:14 +0000 (10:58 -0400)
committer	Viktor Dukhovni <postfix-users@dukhovni.org>
	Thu, 26 May 2016 04:41:55 +0000 (00:41 -0400)