Fix cert with rsa instead of rsaEncryption as public key algorithm

Reviewed-by: Kurt Roeckx <kurt@roeckx.be> (Merged from https://github.com/openssl/openssl/pull/7962)
author: Bernd Edlinger <bernd.edlinger@hotmail.de> 2018-12-27 22:18:21 +0100
committer: Bernd Edlinger <bernd.edlinger@hotmail.de> 2018-12-31 09:47:12 +0100
commit: 1f483a69bce11c940309edc437eee6e32294d5f2 (patch)
tree: 54e8eeccd9c7237da9e483395bb2ae4b714996e2 /crypto/rsa
parent: 0b4233f5a4a181a6dcb7c511cd2663e500e659a4 (diff)
1 files changed, 6 insertions, 3 deletions
diff --git a/crypto/rsa/rsa_ameth.c b/crypto/rsa/rsa_ameth.c
index 459bcbf380..c6ae8a4535 100644
--- a/crypto/rsa/rsa_ameth.c
+++ b/crypto/rsa/rsa_ameth.c
@@ -34,7 +34,7 @@ static int rsa_param_encode(const EVP_PKEY *pkey,
 
     *pstr = NULL;
     /* If RSA it's just NULL type */
-    if (pkey->ameth->pkey_id == EVP_PKEY_RSA) {
+    if (pkey->ameth->pkey_id != EVP_PKEY_RSA_PSS) {
         *pstrtype = V_ASN1_NULL;
         return 1;
     }
@@ -58,7 +58,7 @@ static int rsa_param_decode(RSA *rsa, const X509_ALGOR *alg)
     int algptype;
 
     X509_ALGOR_get0(&algoid, &algptype, &algp, alg);
-    if (OBJ_obj2nid(algoid) == EVP_PKEY_RSA)
+    if (OBJ_obj2nid(algoid) != EVP_PKEY_RSA_PSS)
         return 1;
     if (algptype == V_ASN1_UNDEF)
         return 1;
@@ -109,7 +109,10 @@ static int rsa_pub_decode(EVP_PKEY *pkey, X509_PUBKEY *pubkey)
         RSA_free(rsa);
         return 0;
     }
-    EVP_PKEY_assign(pkey, pkey->ameth->pkey_id, rsa);
+    if (!EVP_PKEY_assign(pkey, pkey->ameth->pkey_id, rsa)) {
+        RSA_free(rsa);
+        return 0;
+    }
     return 1;
 }
author	Bernd Edlinger <bernd.edlinger@hotmail.de>	2018-12-27 22:18:21 +0100
committer	Bernd Edlinger <bernd.edlinger@hotmail.de>	2018-12-31 09:47:12 +0100
commit	1f483a69bce11c940309edc437eee6e32294d5f2 (patch)
tree	54e8eeccd9c7237da9e483395bb2ae4b714996e2 /crypto/rsa
parent	0b4233f5a4a181a6dcb7c511cd2663e500e659a4 (diff)