[openssl/openssl] bac7e6: Validate config options during x509 extension crea...
Neil Horman
noreply at github.com
Fri Jan 5 18:39:49 UTC 2024
Branch: refs/heads/master
Home: https://github.com/openssl/openssl
Commit: bac7e687d71b124b09ad6ad3e15be9b38c08a1ba
https://github.com/openssl/openssl/commit/bac7e687d71b124b09ad6ad3e15be9b38c08a1ba
Author: Neil Horman <nhorman at openssl.org>
Date: 2024-01-05 (Fri, 05 Jan 2024)
Changed paths:
M crypto/x509/v3_addr.c
M crypto/x509/v3_asid.c
M crypto/x509/v3_crld.c
M crypto/x509/v3_ist.c
A test/invalid-x509.cnf
M test/recipes/25-test_x509.t
Log Message:
-----------
Validate config options during x509 extension creation
There are several points during x509 extension creation which rely on
configuration options which may have been incorrectly parsed due to
invalid settings. Preform a value check for null in those locations to
avoid various crashes/undefined behaviors
Reviewed-by: Tomas Mraz <tomas at openssl.org>
Reviewed-by: Matt Caswell <matt at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23183)
More information about the openssl-commits
mailing list