Skip to content
Commit 1cfd255c authored by Dr. Stephen Henson's avatar Dr. Stephen Henson
Browse files

Add additional DigestInfo checks.



Reencode DigestInto in DER and check against the original: this
will reject any improperly encoded DigestInfo structures.

Note: this is a precautionary measure, there is no known attack
which can exploit this.

Thanks to Brian Smith for reporting this issue.
Reviewed-by: default avatarTim Hudson <tjh@openssl.org>
parent 3d81ec5b
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment