Fix openssl ca certificate releated issues #98
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
2 tasks
This is needed in some cases where openssl needs to check that a public key in a cert on file matches with the private key provided in a pkcs11 URI, like int he openssl ca command. Depends on this PR: openssl/openssl#19648 Signed-off-by: Simo Sorce <[email protected]>
simo5
force-pushed
the
ca_cert_export
branch
from
d50e590 to
18467f6
Compare
|
Good catch. I hope, openssl will pick your changes soon... |
OpenSSL has more aliases for digest names than it make sense. Instead of chasing down all the aliases and cases, turn the code to use EVP_MD facilities to deal with names and sizes for us instead. Signed-off-by: Simo Sorce <[email protected]>
simo5
force-pushed
the
ca_cert_export
branch
from
01686a2 to
ef4bdc0
Compare
simo5
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is needed in some cases where openssl needs to check that a public key in a cert on file matches with the private key provided in a pkcs11 URI, like int he openssl ca command.
Depends on this PR: openssl/openssl#19648
Manually tested wth the PR above on OpenSSL Master tree
Fixes #94
Fixes #99