[krbdev.mit.edu #9111] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Mon Mar 18 21:20:14 EDT 2024
Mon Mar 18 21:20:14 2024: Request 9111 was acted upon.
Transaction: Ticket created by ghudson at mit.edu
Queue: krb5
Subject: git commit
Owner: ghudson at mit.edu
Requestors:
Status: new
Ticket <URL: https://krbdev.mit.edu/rt/Ticket/Display.html?id=9111 >
Correct PKINIT EC cert signature metadata
When generating CMS SignedData in PKINIT, check the certificate's
public key type and set the signatureAlgorithm field appropriately.
(This field is currently ignored by OpenSSL when verifying CMS
SignedData.)
https://github.com/krb5/krb5/commit/bdcd6075bd4593c8f67722ce075c9519faec58b7
Author: Greg Hudson <ghudson at mit.edu>
Commit: bdcd6075bd4593c8f67722ce075c9519faec58b7
Branch: master
src/plugins/preauth/pkinit/pkinit_crypto_openssl.c | 20 ++++++++++++++++++--
1 file changed, 18 insertions(+), 2 deletions(-)
More information about the krb5-bugs
mailing list