Project

General

Profile

Actions
Copy link

Bug #689

closed

Do not instantiate authority with incapable certificate.

Added by Felix Tiede over 5 years ago. Updated over 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Felix Tiede
Target version:
0.2.2
Start date:
04/13/2020
Due date:
04/14/2020
% Done:

100%

Estimated time:
1:00 h
Spent time:
4:00 h

Description

During development for #682 it turned out KCA::Authority can be instantiated with a certificate incapable of signing requests.
The problem was only discovered after libkca_ossl:7320ca22aab4506465e16dcdddf32d793f1106e3 dropped automagic creation of an authority certificate based on the supplied request subject in KCA::OSSL::Request::selfsign().

Not instantiating KCA::Authority with an unfitting certificate should be a last line of defense, callers should check prior to doing so.

Related issues 1 (1 open0 closed)

Related to KDE Certification Authority Tool - Task #682: Refactor authority.cppIn ProgressFelix Tiede02/23/202002/27/2020

Actions
Actions
Copy link

Also available in: Atom PDF