Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Not Evaluated
Fix Version/s: 4.7.0
Affects Version/s: 4.7.0
Component/s: Network: SSL
Labels:
None
Environment:
Windows Vista SP1, OpenSSL 1.0.0a

Commits:
0f16c7ce8dcd6f4905d14875088c55148e41366a

Description

QSslCertificate::serialNumber() returns a QByteArray with "-1" content when the serial number of the certificate is longer than a long. It is because ASN1_INTEGER_get of OpenSSL library returns 0xffffffffL when the integer is too large to fit in a long. ASN1_INTEGERs can be of arbitrary size.

A better method to convert the serial number to QByteArray would be to use a BIO and the i2a_ASN1_INTEGER OpenSSL function.

/*!
Returns the certificate's serial number string in decimal format.
*/
QByteArray QSslCertificate::serialNumber() const
{
if (d->serialNumberString.isEmpty() && d->x509) {
BIO* bio = q_BIO_new(q_BIO_s_mem());
if (!bio)
return QByteArray();

if (i2a_ASN1_INTEGER(bio, d->x509->cert_info->serialNumber) < 0)

{ q_BIO_free(bio); return QByteArray(); }

char *data = NULL;
int size = q_BIO_get_mem_data(bio, &data);
if (size < -1 || !data)

{ q_BIO_free(bio); return QByteArray(); }

d->serialNumberString = QByteArray(data, size)
q_BIO_free(bio);
}

return d->serialNumberString;
}

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

No reviews matched the request. Check your Options in the drop-down menu of this sections header.

Activity

People

Assignee:: Peter Hartmann (closed Nokia identity) (Inactive)

Reporter:: Gergő Ertli

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 29 Jul '10 18:13

Updated:: 22 Mar '12 16:39

Resolved:: 30 Jul '10 10:13

Gerrit Reviews

There are no open Gerrit changes