artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5cc8010) | patch
In some situations, the verifier would discard the error on an unvalidated
authorbeck <beck@openbsd.org>
Wed, 24 Nov 2021 05:38:12 +0000 (05:38 +0000)
committerbeck <beck@openbsd.org>
Wed, 24 Nov 2021 05:38:12 +0000 (05:38 +0000)
commit3f851282810fa0ab4b90b3b1ecec2e8717ef16f8
treecf41de8f94c92e58ad66d128ec9ebfdbd0ef8b5ctree | snapshot
parent5cc80106ccf9c64c83c3e231c5fab2cd4170d294commit | diff
In some situations, the verifier would discard the error on an unvalidated
certificte chain. This would happen when the verification callback was
in use, instructing the verifier to continue unconditionally. This could
lead to incorrect decisions being made in software.
lib/libcrypto/x509/x509_internal.h diff | blob | history
lib/libcrypto/x509/x509_verify.c diff | blob | history
lib/libcrypto/x509/x509_vfy.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim