generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

tolerate broken CMS/PKCS7 implementations using signature OID instead of digest

Browse Source
This commit is contained in:
Dr. Stephen Henson 2010-02-02 14:26:32 +00:00
parent 8b354e776b
commit 45acdd6f6d
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
crypto/cms/cms_lib.c
View File

@ -406,7 +406,11 @@ int cms_DigestAlgorithm_find_ctx(EVP_MD_CTX *mctx, BIO *chain,
return 0; return 0;
} }
BIO_get_md_ctx(chain, &mtmp); BIO_get_md_ctx(chain, &mtmp);
if (EVP_MD_CTX_type(mtmp) == nid) if (EVP_MD_CTX_type(mtmp) == nid
/* Workaround for broken implementations that use signature
* algorithm OID instead of digest.
*/
|| EVP_MD_pkey_type(EVP_MD_CTX_md(mtmp)) == nid)
{ {
EVP_MD_CTX_copy_ex(mctx, mtmp); EVP_MD_CTX_copy_ex(mctx, mtmp);
return 1; return 1;