ocsp.c make_ocsp_response() fix

John Pruitt Wed, 29 Jan 2003 19:27:55 -0800

The handling of the thisupd and nextupd pointers in make_ocsp_response() is incorrect. The pointers should be the first parameter of x509_gmtime_adj(), rather than the return value.

I've attached a patch that fixes this.

-John

--- ../../../orig/openssl-0.9.7/apps/ocsp.c     2002-12-03 08:34:23.000000000 -0800
+++ ocsp.c      2003-01-29 19:23:46.000000000 -0800
@@ -1043,9 +1043,11 @@
        ca_id = OCSP_cert_to_id(EVP_sha1(), NULL, ca);
 
        bs = OCSP_BASICRESP_new();
-       thisupd = X509_gmtime_adj(NULL, 0);
+       thisupd = ASN1_GENERALIZEDTIME_new();
+       nextupd = ASN1_GENERALIZEDTIME_new();
+       X509_gmtime_adj(thisupd, 0);
        if (ndays != -1)
-               nextupd = X509_gmtime_adj(NULL, nmin * 60 + ndays * 3600 * 24 );
+               X509_gmtime_adj(nextupd, nmin * 60 + ndays * 3600 * 24 );
 
        /* Examine each certificate id in the request */
        for (i = 0; i < id_count; i++)

ocsp.c make_ocsp_response() fix

Reply via email to