• Nikos Mavrogiannopoulos's avatar
    x509: corrected issue in the algorithm parameters comparison · d9ba6041
    Nikos Mavrogiannopoulos authored
    Each certificate has two fields to set the signature algorithm
    and parameters used for the digital signature. One of the fields is
    authenticated and the other is not. It is required from RFC5280 to
    enforce the equality of these fields, but currently due to an issue
    we wouldn't enforce the equality of the parameters fields. This
    fix corrects the issue.
    
    We also move an RSA-PSS certificate in chainverify that was relying
    on invalid parameters, to this set of invalid certificates.
    
    Resolves: #698Signed-off-by: Nikos Mavrogiannopoulos's avatarNikos Mavrogiannopoulos <nmav@redhat.com>
    d9ba6041
To find the state of this project's repository at the time of any of these versions, check out the tags.
NEWS 362 KB