Home GnuPG
Diffusion libksba 98882064f457

Support multi-valued signatures in CSRs.
98882064f457
Actions

Description

Support multi-valued signatures in CSRs.

* src/certreq.c (ksba_certreq_set_sig_val): Support signatures
made of several values.

The current implementation of ksba_certreq_set_sig_val takes
only the first MPI value in the provided S-expression to build
the CSR signature. This is enough for RSA, but not for ECDSA
since a ECDSA signature is made of two values.

This patch makes sure all values are taken into account. It
also partially replaces some of the ad-hoc parsing code by
the helper functions defined in sexp-parse.h.

  • GnuPG-bug-id: T4092
  • Signed-off-by: Damien Goutte-Gattat <dgouttegattat@incenp.org>

Details

Provenance
Damien Goutte-Gattat via Gnupg-devel <gnupg-devel@gnupg.org>Authored on Nov 16 2018, 2:27 AM
gniibeCommitted on Feb 14 2019, 12:57 AM
Parents
rK3f99f332ada6: build: With LD_LIBRARY_PATH defined, use --disable-new-dtags.
Branches
Unknown
Tags
Unknown
Tasks
T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed

Changes (1)

PathSize
src/

rK98882064f457

View Options

src/certreq.c

Loading...