system: CRL/cert subject hash mismatch in certctl.py #7993
Comments
|
seems to be caused by pyca/pyopenssl#165, fix on its way |
fichtner
pushed a commit
that referenced
this issue
Oct 21, 2024
Since pyOpenSSL doesn't support generating hashses for CRL's, we calculated one with the functions available in the libraries. Unfortunately X509Name doesn't seem to support duplicate attributes, causing mismatches on our end. This commit replaces the previous logic with a direct call to openssl, although it's slower, it will deliver the expected outcome. (cherry picked from commit e78e243)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Important notices
Before you add a new report, we ask you kindly to acknowledge the following:
Describe the bug
Some subjects were producing a different hash in certctl.py after refactor, fixed by d172f15cebb
To Reproduce
Revert commit ;)
Expected behavior
Correct hashing for CRL and certificates
Describe alternatives you considered
N/A
Screenshots
N/A
Relevant log files
N/A
Additional context
N/A
Environment
24.7.6
The text was updated successfully, but these errors were encountered: