projects / gnupg2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: dcc9ca6) | patch
dirmngr: Allow for other hash algorithms than SHA-1 in OCSP.
authorWerner Koch <wk@gnupg.org>
Tue, 28 May 2019 10:27:00 +0000 (12:27 +0200)
committerDaniel Kahn Gillmor <dkg@fifthhorseman.net>
Fri, 1 Jul 2022 16:06:43 +0000 (17:06 +0100)
commitd92d45943c18f9d6298fb096c2da278131cd2f1a
tree310df2b84d70ca85e6efe94985de4cad1b87e441tree | snapshot
parentdcc9ca6dfd19fe49ed874c3338fbe3e03d42e5c5commit | diff
dirmngr: Allow for other hash algorithms than SHA-1 in OCSP.

* dirmngr/ocsp.c (do_ocsp_request): Remove arg md.  Add args r_sigval,
r_produced_at, and r_md.  Get the hash algo from the signature and
create the context here.
(check_signature): Allow any hash algo.  Print a diagnostic if the
signature does not verify.
--

GnuPG-bug-id: 3966
Signed-off-by: Werner Koch <wk@gnupg.org>
(cherry picked from commit 5281ecbe3ae8364407d9831243b81d664b040805)

Gbp-Pq: Topic from-2.2.16
Gbp-Pq: Name dirmngr-Allow-for-other-hash-algorithms-than-SHA-1-in-OCS.patch
dirmngr/ocsp.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.