[openssl/openssl] bdb3c6: Validate config options during x509 extension crea...
Neil Horman
noreply at github.com
Fri Jan 5 19:24:49 UTC 2024
Branch: refs/heads/openssl-3.2
Home: https://github.com/openssl/openssl
Commit: bdb3c6d6a2babb31bf145e3d0094e4b91b74c969
https://github.com/openssl/openssl/commit/bdb3c6d6a2babb31bf145e3d0094e4b91b74c969
Author: Neil Horman <nhorman at openssl.org>
Date: 2024-01-05 (Fri, 05 Jan 2024)
Changed paths:
M crypto/x509/v3_addr.c
M crypto/x509/v3_asid.c
M crypto/x509/v3_crld.c
M crypto/x509/v3_ist.c
A test/invalid-x509.cnf
M test/recipes/25-test_x509.t
Log Message:
-----------
Validate config options during x509 extension creation
There are several points during x509 extension creation which rely on
configuration options which may have been incorrectly parsed due to
invalid settings. Preform a value check for null in those locations to
avoid various crashes/undefined behaviors
Reviewed-by: Tomas Mraz <tomas at openssl.org>
Reviewed-by: Matt Caswell <matt at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23183)
(cherry picked from commit bac7e687d71b124b09ad6ad3e15be9b38c08a1ba)
More information about the openssl-commits
mailing list