Service Desk (from b.cama@kerlink.fr): Certtool Segfaults when called with --certificate-pubkey

Hi,

Sorry for using the exceptional address for this; I just witnessed a segfault when running "certtool" with specific parameters (with any certificate):

certtool --certificate-pubkey --infile /usr/share/ca-certificates/CAcert/root.crt

It seems to come from a double call to asn1_delete_structure2() for the same structure, dereferencing a strange pointer (not a NULL but some low value; so this fits the “security-related” reason, maybe?).

But then I realize that this commands first prints the full certificates, then (again, as it is already printed in the cert) the public key. Does it make sense? The correct usage for my use case (getting a certificate's public key) is calling certtool with " --pubkey-info --load-certificate" or "--pubkey-info --infile" (yay, two different ways…). What is the reason for "--certificate-pubkey" then?

Thanks.