Skip Menu |
 

From: ghudson@mit.edu
Subject: git commit

Correct PKINIT EC cert signature metadata

When generating CMS SignedData in PKINIT, check the certificate's
public key type and set the signatureAlgorithm field appropriately.
(This field is currently ignored by OpenSSL when verifying CMS
SignedData.)

https://github.com/krb5/krb5/commit/bdcd6075bd4593c8f67722ce075c9519faec58b7
Author: Greg Hudson <ghudson@mit.edu>
Commit: bdcd6075bd4593c8f67722ce075c9519faec58b7
Branch: master
src/plugins/preauth/pkinit/pkinit_crypto_openssl.c | 20 ++++++++++++++++++--
1 file changed, 18 insertions(+), 2 deletions(-)