projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5aa2a7e) | patch
X509_check_issued: check that signature algo matches signing key algo
authorRichard Levitte <levitte@openssl.org>
Tue, 18 Dec 2018 08:14:51 +0000 (09:14 +0100)
committerRichard Levitte <levitte@openssl.org>
Wed, 19 Dec 2018 12:33:54 +0000 (13:33 +0100)
commitffd2df135a5d9f6d2627bd125f362298430fdc06
tree5c13617bd3bbaaef09863e84a444b07d2a9eb5d1tree | snapshot
parent5aa2a7ea41d7137640cb0914807fd1202b920543commit | diff
X509_check_issued: check that signature algo matches signing key algo

This implements 3.5.18 "Consistent Public Key and Signature Algorithms"
from RFC 4158 "Internet X.509 Public Key Infrastructure: Certification
Path Building"

Ref: https://tools.ietf.org/html/rfc4158#section-3.5.18

Fixes #7899

Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com>
(Merged from https://github.com/openssl/openssl/pull/7919)
crypto/x509/x509_txt.c diff | blob | history
crypto/x509v3/v3_purp.c diff | blob | history
include/openssl/x509_vfy.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.