View Issue Details

IDProjectCategoryView StatusLast Update
0000991Main CAcert Websitemy accountpublic2013-01-08 06:26
ReporterMarek Mazur Assigned ToNEOatNHNG  
PrioritynormalSeverityminorReproducibilityalways
Status needs workResolutionopen 
Platformx86_64OSLinux 
Summary0000991: commonName is wrongly burned on CSR
DescriptionEverything after quoted name is ommited in CSR. Certificate is signed by signer.

For example:
"Bartłomiej Skrzynia" will generate CSR for "Bart&".

The worst part: signer signs this kind of certificates.
Steps To Reproduce1. Change your name to name containing character not from latin1 charset.
2. Generate CSR.
3. openssl x509 -in your_certificate -noout -issuer -subject
TagsNo tags attached.
Reviewed by
Test Instructions

Relationships

related to 0000992 closedNEOatNHNG Problem with diacritic characters while adding PGP/GPG public key 
related to 0001097 closedNEOatNHNG Special characters which have no HTML-entities are not properly escaped 
related to 0000008 needs reviewSourcerer Normalization of special characters when comparing names 
related to 0001101 needs workTimoAHummel general rewrite of get info from csr routine in includes/general.php 
related to 0001100 needs work findings from David 

Activities

Uli60

2012-12-18 22:07

updater   ~0003462

rfc standards:
rfc 4880, defaults to utf-8, section 5.11
email rfc-2822

Issue History

Date Modified Username Field Change
2011-10-18 20:08 Marek Mazur New Issue
2011-10-18 20:09 Marek Mazur Reproducibility have not tried => always
2011-10-18 22:13 NEOatNHNG Assigned To => NEOatNHNG
2011-10-18 22:13 NEOatNHNG Status new => needs work
2011-10-22 18:43 MarekMazur Relationship added related to 0000992
2012-12-18 22:07 Uli60 Note Added: 0003462
2012-12-23 07:44 Werner Dworak Relationship added related to 0001097
2013-01-07 09:07 Werner Dworak Relationship added related to 0000008
2013-01-07 21:50 Werner Dworak Relationship added related to 0001101
2013-01-08 06:26 Werner Dworak Relationship added related to 0001100