projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 318a9df) | patch
OSSL_CMP_validate_msg(): make sure to reject protection type mismatch
authorDr. David von Oheimb <David.von.Oheimb@siemens.com>
Tue, 22 Nov 2022 07:43:03 +0000 (08:43 +0100)
committerDr. David von Oheimb <dev@ddvo.net>
Thu, 8 Dec 2022 07:19:45 +0000 (08:19 +0100)
commitfc93335760686ad7cf3633d457caf18b0ac83ea2
tree6691c0baf052a7a6132dcff7ee39ccacfd4bb4d0tree | snapshot
parent318a9dfa5f7bd1237d2697ad950697d241b8b49fcommit | diff
OSSL_CMP_validate_msg(): make sure to reject protection type mismatch

Do not accept password-based if expected signature-based and no secret is available and
do not accept signature-based if expected password-based and no trust anchors available.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com>
(Merged from https://github.com/openssl/openssl/pull/19729)
crypto/cmp/cmp_err.c diff | blob | history
crypto/cmp/cmp_vfy.c diff | blob | history
crypto/err/openssl.txt diff | blob | history
doc/man3/OSSL_CMP_validate_msg.pod diff | blob | history
include/openssl/cmperr.h diff | blob | history
test/cmp_vfy_test.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.