option to output corrupted signature in certificates for testing purposes

author Dr. Stephen Henson <steve@openssl.org>

Sun, 25 Nov 2012 22:29:52 +0000 (22:29 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Sun, 25 Nov 2012 22:29:52 +0000 (22:29 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Sun, 25 Nov 2012 22:29:52 +0000 (22:29 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Sun, 25 Nov 2012 22:29:52 +0000 (22:29 +0000)
diff --git a/apps/x509.c b/apps/x509.c

index 694d2544ebb2c5ab5fc60262d67cf3aae4daf4fc..51c86b4139c029a5aaaab996a28737d176680e4f 100644 (file)
--- a/apps/x509.c
+++ b/apps/x509.c
@@ -179,7 +179,7 @@ int MAIN(int argc, char **argv)
         STACK_OF(OPENSSL_STRING) *sigopts = NULL;
         EVP_PKEY *Upkey=NULL,*CApkey=NULL, *fkey = NULL;
         ASN1_INTEGER *sno = NULL;
-       int i,num,badops=0;
+       int i,num,badops=0, badsig=0;
         BIO *out=NULL;
         BIO *STDout=NULL;
         STACK_OF(ASN1_OBJECT) *trust = NULL, *reject = NULL;
@@ -499,6 +499,8 @@ int MAIN(int argc, char **argv)
  #endif
                 else if (strcmp(*argv,"-ocspid") == 0)
                         ocspid= ++num;
+               else if (strcmp(*argv,"-badsig") == 0)
+                       badsig = 1;
                 else if ((md_alg=EVP_get_digestbyname(*argv + 1)))
                         {
                         /* ok */
@@ -1089,6 +1091,9 @@ bad:
                 goto end;
                 }
  
+       if (badsig)
+               x->signature->data[x->signature->length - 1] ^= 0x1;
+
         if      (outformat == FORMAT_ASN1)
                 i=i2d_X509_bio(out,x);
         else if (outformat == FORMAT_PEM)
author	Dr. Stephen Henson <steve@openssl.org>
	Sun, 25 Nov 2012 22:29:52 +0000 (22:29 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Sun, 25 Nov 2012 22:29:52 +0000 (22:29 +0000)