[openssl/openssl] f645f2: Validate config options during x509 extension crea...
Neil Horman
noreply at github.com
Fri Jan 5 19:00:47 UTC 2024
Branch: refs/heads/openssl-3.0
Home: https://github.com/openssl/openssl
Commit: f645f242d7bb835bb417a878de1dc2951ba1e480
https://github.com/openssl/openssl/commit/f645f242d7bb835bb417a878de1dc2951ba1e480
Author: Neil Horman <nhorman at openssl.org>
Date: 2024-01-05 (Fri, 05 Jan 2024)
Changed paths:
M crypto/x509/v3_addr.c
M crypto/x509/v3_asid.c
M crypto/x509/v3_crld.c
M crypto/x509/v3_ist.c
A test/invalid-x509.cnf
M test/recipes/25-test_x509.t
Log Message:
-----------
Validate config options during x509 extension creation
There are several points during x509 extension creation which rely on
configuration options which may have been incorrectly parsed due to
invalid settings. Preform a value check for null in those locations to
avoid various crashes/undefined behaviors
Reviewed-by: Tomas Mraz <tomas at openssl.org>
Reviewed-by: Matt Caswell <matt at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23183)
(cherry picked from commit bac7e687d71b124b09ad6ad3e15be9b38c08a1ba)
More information about the openssl-commits
mailing list