artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 87048bb) | patch
Fix error check of CMS_unsigned_get_addr_count()
authortb <tb@openbsd.org>
Mon, 28 Mar 2022 08:19:15 +0000 (08:19 +0000)
committertb <tb@openbsd.org>
Mon, 28 Mar 2022 08:19:15 +0000 (08:19 +0000)
commit974c6faf73825f579461aa0f95fad292265154ca
tree031e6a5963273a073d92e861c8584e4f384b6329tree | snapshot
parent87048bbab34c94d41df2a4ccae6e256db0f096d1commit | diff
Fix error check of CMS_unsigned_get_addr_count()

According to RFC 5652, unsignedAttrs are a SET OF at least one member,
however the CMS code doesn't actually check for this. Since SET OF may
contain zero members in general, an empty set of unsignedAttrs would
be accepted. Catch this by explicitly checking for a -1 return value.

ok claudio
usr.sbin/rpki-client/cms.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim