diff options
author | Dr. David von Oheimb <David.von.Oheimb@siemens.com> | 2022-11-22 08:43:03 +0100 |
---|---|---|
committer | Dr. David von Oheimb <dev@ddvo.net> | 2022-12-08 08:19:45 +0100 |
commit | fc93335760686ad7cf3633d457caf18b0ac83ea2 (patch) | |
tree | 6691c0baf052a7a6132dcff7ee39ccacfd4bb4d0 /include | |
parent | 318a9dfa5f7bd1237d2697ad950697d241b8b49f (diff) |
OSSL_CMP_validate_msg(): make sure to reject protection type mismatch
Do not accept password-based if expected signature-based and no secret is available and
do not accept signature-based if expected password-based and no trust anchors available.
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com>
(Merged from https://github.com/openssl/openssl/pull/19729)
Diffstat (limited to 'include')
-rw-r--r-- | include/openssl/cmperr.h | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/include/openssl/cmperr.h b/include/openssl/cmperr.h index 3a26fd0bda..06e9dbff36 100644 --- a/include/openssl/cmperr.h +++ b/include/openssl/cmperr.h @@ -1,6 +1,6 @@ /* * Generated by util/mkerr.pl DO NOT EDIT - * Copyright 1995-2021 The OpenSSL Project Authors. All Rights Reserved. + * Copyright 1995-2022 The OpenSSL Project Authors. All Rights Reserved. * * Licensed under the Apache License 2.0 (the "License"). You may not use * this file except in compliance with the License. You can obtain a copy @@ -69,7 +69,9 @@ # define CMP_R_MISSING_PRIVATE_KEY 131 # define CMP_R_MISSING_PROTECTION 143 # define CMP_R_MISSING_REFERENCE_CERT 168 +# define CMP_R_MISSING_SECRET 178 # define CMP_R_MISSING_SENDER_IDENTIFICATION 111 +# define CMP_R_MISSING_TRUST_ANCHOR 179 # define CMP_R_MISSING_TRUST_STORE 144 # define CMP_R_MULTIPLE_REQUESTS_NOT_SUPPORTED 161 # define CMP_R_MULTIPLE_RESPONSES_NOT_SUPPORTED 170 |