Closed
Bug 1196813
Opened 10 years ago
Closed 3 years ago
mozilla::pkix should handle VFY_VerifyDigestDirect setting the error SEC_ERROR_PKCS7_KEYALG_MISMATCH
Categories
(Core :: Security: PSM, defect, P5)
Core
Security: PSM
Tracking
()
RESOLVED
FIXED
| Tracking | Status | |
|---|---|---|
| firefox43 | --- | affected |
People
(Reporter: keeler, Unassigned)
Details
(Whiteboard: [psm-cleanup])
If a certificate says it was signed with (e.g.) ecdsaWithSHA256 but was actually signed with (e.g.) sha256WithRSAEncryption, VFY_VerifyDigestDirect will set the PR error to SEC_ERROR_PKCS7_KEYALG_MISMATCH. However, mozilla::pkix doesn't handle this specific error and causes it to be converted to PR_UNKNOWN_ERROR, which is not very informative.
(This isn't a huge deal - I just stumbled across it and was confused by the resulting error.)
|
Reporter | |
Updated•9 years ago
|
Whiteboard: [psm-cleanup]
|
|
Reporter | |
Updated•8 years ago
|
Priority: -- → P5
|
||
Comment 1•3 years ago
|
||
Fixed by way of Bug 1755092.
Status: NEW → RESOLVED
Closed: 3 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•