[openssl/openssl] c3f24a: OSSL_CMP_validate_msg(): make sure to reject prote...
David von Oheimb
noreply at github.com
Mon Dec 12 07:03:59 UTC 2022
Branch: refs/heads/openssl-3.1
Home: https://github.com/openssl/openssl
Commit: c3f24a0390db9e1c369b115b9345143ab5bb4152
https://github.com/openssl/openssl/commit/c3f24a0390db9e1c369b115b9345143ab5bb4152
Author: Dr. David von Oheimb <David.von.Oheimb at siemens.com>
Date: 2022-12-12 (Mon, 12 Dec 2022)
Changed paths:
M crypto/cmp/cmp_err.c
M crypto/cmp/cmp_vfy.c
M crypto/err/openssl.txt
M doc/man3/OSSL_CMP_validate_msg.pod
M include/openssl/cmperr.h
M test/cmp_vfy_test.c
Log Message:
-----------
OSSL_CMP_validate_msg(): make sure to reject protection type mismatch
Do not accept password-based if expected signature-based and no secret is available and
do not accept signature-based if expected password-based and no trust anchors available.
Reviewed-by: Tomas Mraz <tomas at openssl.org>
Reviewed-by: Paul Dale <pauli at openssl.org>
Reviewed-by: David von Oheimb <david.von.oheimb at siemens.com>
(Merged from https://github.com/openssl/openssl/pull/19861)
More information about the openssl-commits
mailing list