git.ipfire.org Git - thirdparty/openvpn.git/commit

author	Davide Brini <dave_br@gmx.com>
	Tue, 27 Apr 2010 11:20:05 +0000 (12:20 +0100)
committer	David Sommerseth <dazo@users.sourceforge.net>
	Thu, 21 Oct 2010 09:39:30 +0000 (11:39 +0200)
commit	7d5e26cbb53e2700c966e6b6e815f0c824da8956
tree	5c0d1d9fc28478c67761d745cc06a4cc4b01b6d5	tree
parent	892e64b6b9e08f838add6b32dfdea73d607b36ce	commit \| diff

Fix certificate serial number export

    contrib/OCSP_check/OCSP_check.sh:
             New barebone script to demonstrate how to use $tls_serial_{n}
             to perform simple OCSP queries using OpenSSL command line
             "openssl ocsp". Minimal sanity checks to fail if user tries to
             use it without customizing.

    openvpn.8:
             Added some notes about $tls_serial_{n} format and usage to the
             existing description.

    ssl.c:
             correctly manage and export serial numbers of any size (as
             parsed by OpenSSL) into the environment. Set to empty string
             in case of errors, as 0 and negative numbers are all possible
             (although illegal) certificate serial numbers. Use an OpenSSL
             BIO object to do the job. Conforms to coding style guidelines.

    See the discussion at

    http://article.gmane.org/gmane.network.openvpn.devel/3588

    for more details.

Signed-off-by: Davide Brini <dave_br@gmx.com>
Signed-off-by: David Sommerseth <dazo@users.sourceforge.net>
Acked-by: David Sommerseth <dazo@users.sourceforge.net>

contrib/OCSP_check/OCSP_check.sh	[new file with mode: 0644]	blob
openvpn.8		diff \| blob \| blame \| history
ssl.c		diff \| blob \| blame \| history