diff options
author | Matt Caswell <matt@openssl.org> | 2018-02-23 11:05:01 +0000 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2018-03-15 13:34:57 +0000 |
commit | 58f858274923a6a2a8aa144ff76492d3159a0710 (patch) | |
tree | ed7f1f979d0411c96ef5412f4b00f7500aa89b17 | |
parent | f1e2b8adbd84434a634b62a3dc0c0c7506a96ae2 (diff) | |
download | openssl-new-58f858274923a6a2a8aa144ff76492d3159a0710.tar.gz |
Revert "Don't allow an empty Subject when creating a Certificate"
This reverts commit dd37f6f12cc14cc4710289746b112eb0fed3b0b7.
Empty Subjects are permissible.
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5445)
-rw-r--r-- | apps/ca.c | 10 |
1 files changed, 0 insertions, 10 deletions
@@ -1676,10 +1676,6 @@ static int do_body(X509 **xret, EVP_PKEY *pkey, X509 *x509, "The Subject's Distinguished Name is as follows\n"); name = X509_REQ_get_subject_name(req); - if (X509_NAME_entry_count(name) == 0) { - BIO_printf(bio_err, "Error: The supplied Subject is empty\n"); - goto err; - } for (i = 0; i < X509_NAME_entry_count(name); i++) { ne = X509_NAME_get_entry(name, i); str = X509_NAME_ENTRY_get_data(ne); @@ -1842,12 +1838,6 @@ static int do_body(X509 **xret, EVP_PKEY *pkey, X509 *x509, goto err; } - if (X509_NAME_entry_count(subject) == 0) { - BIO_printf(bio_err, - "Error: After applying policy the Subject is empty\n"); - goto err; - } - if (verbose) BIO_printf(bio_err, "The subject name appears to be ok, checking data base for clashes\n"); |