commit 798dca541c5d582d43fc953b0768a5aa2b009be5
author Ravi Teja <raviteja28031990@gmail.com> Sun Mar 24 14:00:07 2024 -0500
committer Ravi Teja <raviteja28031990@gmail.com> Sun Mar 24 19:30:03 2024 +0000
tree 9136183a6a1bece65b199bd7cb5b1fe0e48b20f2
parent 8dbcc72d55f007c43c504ee98e40f352e996426f

GenerateCSR: Avoid setting CSR version

Latest openssl displays as unknown version while parsing BMC generated
CSRs over openssl command line

As per openssl discussion in this issue, by default CSR version set to 1
https://github.com/openssl/openssl/issues/20663
The only defined CSR version is X509_REQ_VERSION_1, so there is no need
to call X509_REQ_set_version() to set version explicitly

This commit avoids calling X509_REQ_set_version() to set CSR version

Tested By:
1.Generate CSR using redfish interface
2.Parse csr using openssl and check version
  openssl req -in csr.txt -noout -text
  Certificate Request:
  Data:
    Version: 1 (0x0)

Change-Id: I29dfc50e661d39fe7930d65079abfee924745d21
Signed-off-by: Ravi Teja <raviteja28031990@gmail.com>

certs_manager.cpp

diff --git a/certs_manager.cpp b/certs_manager.cpp
index 53a0bb3..b4e396f 100644
--- a/certs_manager.cpp
+++ b/certs_manager.cpp
@@ -546,16 +546,7 @@
 {
     int ret = 0;
 
-    // set version of x509 req
-    int nVersion = 1;
     X509ReqPtr x509Req(X509_REQ_new(), ::X509_REQ_free);
-    ret = X509_REQ_set_version(x509Req.get(), nVersion);
-    if (ret == 0)
-    {
-        lg2::error("Error occurred during X509_REQ_set_version call");
-        ERR_print_errors_fp(stderr);
-        elog<InternalFailure>();
-    }
 
     // set subject of x509 req
     X509_NAME* x509Name = X509_REQ_get_subject_name(x509Req.get());