ASN1: Make ASN1_item_verify_ctx() work with provider-native keys

Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/12587)
author: Richard Levitte <levitte@openssl.org> 2020-09-01 17:56:11 +0200
committer: Richard Levitte <levitte@openssl.org> 2020-09-03 17:48:33 +0200
commit: d55d0935deb1a8af9cb9a76bf4ca21da47ba8184 (patch)
tree: 16f0312a4cabe0da99dc80dc1a286dae50190f0e /crypto/asn1/a_verify.c
parent: 5045abb2e92f9370b05f5e9c6f116fb01bf9e4fe (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/crypto/asn1/a_verify.c b/crypto/asn1/a_verify.c
index 2b2c46a854..e3471c8141 100644
--- a/crypto/asn1/a_verify.c
+++ b/crypto/asn1/a_verify.c
@@ -163,7 +163,7 @@ int ASN1_item_verify_ctx(const ASN1_ITEM *it, const X509_ALGOR *alg,
         }
 
         /* Check public key OID matches public key type */
-        if (EVP_PKEY_type(pknid) != pkey->ameth->pkey_id) {
+        if (!EVP_PKEY_is_a(pkey, OBJ_nid2sn(pknid))) {
             ASN1err(0, ASN1_R_WRONG_PUBLIC_KEY_TYPE);
             goto err;
         }
author	Richard Levitte <levitte@openssl.org>	2020-09-01 17:56:11 +0200
committer	Richard Levitte <levitte@openssl.org>	2020-09-03 17:48:33 +0200
commit	d55d0935deb1a8af9cb9a76bf4ca21da47ba8184 (patch)
tree	16f0312a4cabe0da99dc80dc1a286dae50190f0e /crypto/asn1/a_verify.c
parent	5045abb2e92f9370b05f5e9c6f116fb01bf9e4fe (diff)