Revision - a520723 - Ensure we have length checks for all extensions – ENEA Mirror of the Software Heritage archive

Revision a520723f29aac6598ff0d69e34f5e9b88213e511 authored by Matt Caswell on 14 October 2016, 12:07:00 UTC, committed by Matt Caswell on 28 October 2016, 08:43:41 UTC

Ensure we have length checks for all extensions

The previous commit inspired a review of all the length checks for the
extension adding code. This adds more robust checks and adds checks where
some were missing previously. The real solution for this is to use WPACKET
which is currently in master - but that cannot be applied to release
branches.

Reviewed-by: Rich Salz <rsalz@openssl.org>

1 parent 83a1d4b

Files
Changes

Permalinks

CAssdsa.cnf

#
# SSLeay example configuration file.
# This is mostly being used for generation of certificate requests.
#
# hacked by iang to do DSA certs - CA

RANDFILE              = ./.rnd

####################################################################
[ req ]
distinguished_name    = req_distinguished_name
encrypt_rsa_key               = no

[ req_distinguished_name ]
countryName                   = Country Name (2 letter code)
countryName_default           = ES
countryName_value             = ES

organizationName              = Organization Name (eg, company)
organizationName_value                = Hermanos Locos

commonName                    = Common Name (eg, YOUR name)
commonName_value              = Hermanos Locos CA

Showing with 0 additions and 0 deletions (0 / 0 diffs computed)

Computing file changes ...