]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4159ebc) | patch
DECODER EVP_PKEY: Don't store all the EVP_KEYMGMTs
authorRichard Levitte <levitte@openssl.org>
Thu, 10 Dec 2020 17:33:16 +0000 (18:33 +0100)
committerRichard Levitte <levitte@openssl.org>
Thu, 17 Dec 2020 11:02:08 +0000 (12:02 +0100)
commit054cde175664f3e7c8fe5f753c0a5cb5be75dccc
tree330481b6242430ead6739c60b3e8cf080777d9c4tree | snapshot
parent4159ebca3cb3d9586d6709c7a0166a4af5676f91commit | diff
DECODER EVP_PKEY: Don't store all the EVP_KEYMGMTs

OSSL_DECODER_CTX_new_by_EVP_PKEY() would keep copies of all the
EVP_KEYMGMTs it finds.
This turns out to be fragile in certain circumstances, so we switch to
fetch the appropriate EVP_KEYMGMT when it's time to construct an
EVP_PKEY from the decoded data instead.  This has the added benefit
that we now actually use the property query string that was given by
the caller for these fetches.

Fixes #13503

Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/13661)
crypto/encode_decode/decoder_pkey.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git