projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 786dd2c) | patch
Use X509_get_signature_info() when checking security levels.
authorDr. Stephen Henson <steve@openssl.org>
Mon, 24 Apr 2017 18:16:16 +0000 (19:16 +0100)
committerDr. Stephen Henson <steve@openssl.org>
Tue, 25 Apr 2017 21:12:34 +0000 (22:12 +0100)
commitc3c8823c879d90b93108b9e76db5ed5690724c9c
tree1b937a5319e05ad0ee5d4f689b6af180a629b1bdtree | snapshot
parent786dd2c22c71081492e209d93beee3ff4fe66357commit | diff
Use X509_get_signature_info() when checking security levels.

Make signature security level checking more flexible by using
X509_get_signaure_info(): some signature methods (e.g. PSS, ED25519)
do not indicate the signing digest (if any) in the signature OID.

Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3301)
crypto/x509/x509_vfy.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.