[gnutls-devel] GnuTLS | x509: corrected issue in the algorithm parameters comparison (!921)
Development of GNU's TLS library
gnutls-devel at lists.gnutls.org
Mon Feb 11 09:23:28 CET 2019
New Merge Request !921
https://gitlab.com/gnutls/gnutls/merge_requests/921
Branches: tmp-fix-cert-params-checks to master
Author: Nikos Mavrogiannopoulos
Assignee:
Approvers: Simon Josefsson, Dmitry Eremin-Solenikov, Hubert Kario, Tim Rühsen, Andreas Metzler, Daiki Ueno, Tom, Ander Juaristi, Tomáš Mráz, Anderson Sasaki and GnuTLS devel mailing list
Each certificate has two fields to set the signature algorithm
and parameters used for the digital signature. One of the fields is
authenticated and the other is not. It is required from RFC5280 to
enforce the equality of these fields, but currently due to an issue
we wouldn't enforce the equality of the parameters fields. This
fix corrects the issue.
Resolves: #698
## Checklist
* [x] Code modified for feature
* [x] Test suite updated with functionality tests
* [ ] Test suite updated with negative tests
* [x] Documentation updated / NEWS entry present (for non-trivial changes)
## Reviewer's checklist:
* [ ] Any issues marked for closing are addressed
* [ ] There is a test suite reasonably covering new functionality or modifications
* [ ] Function naming, parameters, return values, types, etc., are consistent and according to `CONTRIBUTION.md`
* [ ] This feature/change has adequate documentation added
* [ ] No obvious mistakes in the code
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/921
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20190211/d095dad8/attachment.html>
More information about the Gnutls-devel
mailing list