1--TEST-- 2CVE 2013-4073: Null-byte certificate handling 3--SKIPIF-- 4<?php if (!extension_loaded("openssl")) die("skip"); ?> 5--FILE-- 6<?php 7$cert = file_get_contents(__DIR__ . '/cve2013_4073.pem'); 8$info = openssl_x509_parse($cert); 9var_export($info['extensions']); 10?> 11--EXPECTF-- 12array ( 13 'basicConstraints' => 'CA:FALSE', 14 'subjectKeyIdentifier' => '88:5A:55:C0:52:FF:61:CD:52:A3:35:0F:EA:5A:9C:24:38:22:F7:5C', 15 'keyUsage' => 'Digital Signature, Non Repudiation, Key Encipherment', 16 'subjectAltName' => 'DNS:altnull.python.org' . "\0" . 'example.com, email:null@python.org' . "\0" . 'user@example.org, URI:http://null.python.org' . "\0" . 'http://example.org, IP Address:192.0.2.1, IP Address:2001:DB8:0:0:0:0:0:1 17', 18) 19
