projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b062a3c) | patch
Validate config options during x509 extension creation
authorNeil Horman <nhorman@openssl.org>
Tue, 2 Jan 2024 20:48:00 +0000 (15:48 -0500)
committerNeil Horman <nhorman@openssl.org>
Fri, 5 Jan 2024 18:20:34 +0000 (13:20 -0500)
commitbac7e687d71b124b09ad6ad3e15be9b38c08a1ba
treefe15c63538aac466ddc1fbfaef32244ee4112b02tree | snapshot
parentb062a3c552bf283319dede3437598f1747730053commit | diff
Validate config options during x509 extension creation

There are several points during x509 extension creation which rely on
configuration options which may have been incorrectly parsed due to
invalid settings.  Preform a value check for null in those locations to
avoid various crashes/undefined behaviors

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23183)
crypto/x509/v3_addr.c diff | blob | history
crypto/x509/v3_asid.c diff | blob | history
crypto/x509/v3_crld.c diff | blob | history
crypto/x509/v3_ist.c diff | blob | history
test/invalid-x509.cnf [new file with mode: 0644] blob
test/recipes/25-test_x509.t diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.