Commit c845ff07 authored by Matt Caswell's avatar Matt Caswell
Browse files

Revert "Don't allow an empty Subject when creating a Certificate" 



This reverts commit e505f1e8.

Empty Subjects should be permissible.

Reviewed-by: default avatarRichard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5444)
parent 62e394de

apps/ca.c

+0 −10
Original line number Diff line number Diff line
@@ -1404,10 +1404,6 @@ static int do_body(X509 **xret, EVP_PKEY *pkey, X509 *x509, 
        BIO_printf(bio_err, "The Subject's Distinguished Name is as follows\n");



    name = X509_REQ_get_subject_name(req);

    if (X509_NAME_entry_count(name) == 0) {

        BIO_printf(bio_err, "Error: The supplied Subject is empty\n");

        goto end;

    }

    for (i = 0; i < X509_NAME_entry_count(name); i++) {

        ne = X509_NAME_get_entry(name, i);

        str = X509_NAME_ENTRY_get_data(ne);
@@ -1569,12 +1565,6 @@ static int do_body(X509 **xret, EVP_PKEY *pkey, X509 *x509, 
            goto end;

    }



    if (X509_NAME_entry_count(subject) == 0) {

        BIO_printf(bio_err,

                   "Error: After applying policy the Subject is empty\n");

        goto end;

    }



    if (verbose)

        BIO_printf(bio_err,

                   "The subject name appears to be ok, checking data base for clashes\n");