diff options
| author | Richard Levitte <levitte@openssl.org> | 2018-03-17 12:30:47 +0100 |
|---|---|---|
| committer | Richard Levitte <levitte@openssl.org> | 2018-03-17 14:47:41 +0100 |
| commit | d597208c034722d09612c805e4894b0019bdd710 (patch) | |
| tree | 329f76bde149763db7bea8b4f0f9f7245df36e2a /crypto/ts/ts_rsp_sign.c | |
| parent | 311276ffe32ab0b161c364727cf8676591dbf47c (diff) | |
ts_RESP_sign: Don't try to use v2 signing when ESS digest isn't set
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5653)
Diffstat (limited to 'crypto/ts/ts_rsp_sign.c')
| -rw-r--r-- | crypto/ts/ts_rsp_sign.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/crypto/ts/ts_rsp_sign.c b/crypto/ts/ts_rsp_sign.c index 6569956285..ba9d53d00b 100644 --- a/crypto/ts/ts_rsp_sign.c +++ b/crypto/ts/ts_rsp_sign.c @@ -678,7 +678,8 @@ static int ts_RESP_sign(TS_RESP_CTX *ctx) } certs = ctx->flags & TS_ESS_CERT_ID_CHAIN ? ctx->certs : NULL; - if (ctx->ess_cert_id_digest == EVP_sha1()) { + if (ctx->ess_cert_id_digest == NULL + || ctx->ess_cert_id_digest == EVP_sha1()) { if ((sc = ess_SIGNING_CERT_new_init(ctx->signer_cert, certs)) == NULL) goto err; |