Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2026-04-21 10:23:31 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix DN conversion when reading certificate issuer

Browse Source 
This fixes #3003 .

The conversion to proper UTF-8 should have taken place by just using
`-nameopt RFC2253`, see manpage openssl-namedisplay-options(1ssl).

As @dcooper16 suggested removing esc_msb should help. This may look
counterintuitive but works.
This commit is contained in:
Dirk
2026-04-20 18:09:36 +02:00
parent d2d684e31b
commit b573a4f786
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
testssl.sh
View File

@@ -22888,7 +22888,7 @@ print_dn() {
fi fi
# Use the LDAP String Representation of Distinguished Names (RFC 2253), # Use the LDAP String Representation of Distinguished Names (RFC 2253),
# The current specification is in RFC 4514. # The current specification is in RFC 4514.
name="$(hex2binary "$cert" | $OPENSSL x509 -issuer -noout -inform DER -nameopt RFC2253 2>/dev/null)" name="$(hex2binary "$cert" | $OPENSSL x509 -issuer -noout -inform DER -nameopt RFC2253,-esc_msb 2>/dev/null)"
name="${name#issuer=}" name="${name#issuer=}"
tm_out "$(strip_leading_space "$name")" tm_out "$(strip_leading_space "$name")"
return 0 return 0