Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

During X509 path validation, return immediately if a signature is invalid #4045

Merged
merged 1 commit into from
May 13, 2024
Merged

During X509 path validation, return immediately if a signature is invalid #4045

merged 1 commit into from
May 13, 2024

Conversation

randombit
Copy link
Owner

The remainder of path validation logic is still subject to attacker controlled inputs, but the range of inputs is reduced to that which a legitimate certificate authority was willing to sign.

@randombit randombit requested a review from reneme May 8, 2024 08:58
@randombit
During X509 path validation, return immediately if a signature is inv…
e4b4ff7 
…alid

The remainder of path validation logic is still subject to attacker
controlled inputs, but the range of inputs is reduced to that which a
legitimate certificate authority was willing to sign.
@coveralls
Copy link

Coverage Status

coverage: 92.014% (-0.005%) from 92.019%
when pulling e4b4ff7 on jack/x509-path-sigs-first
into 8798305 on master.

randombit added a commit that referenced this pull request May 11, 2024
@randombit
During X.509 verification, first check the signatures
2e18466 
The remainder of path validation logic is still subject to attacker
controlled inputs, but the range of inputs is reduced to that which a
legitimate certificate authority was willing to sign.

Backport of #4045
@randombit randombit mentioned this pull request May 11, 2024
Merged
randombit added a commit that referenced this pull request May 11, 2024
@randombit
During X.509 verification, first check the signatures
cbbcc93 
The remainder of path validation logic is still subject to attacker
controlled inputs, but the range of inputs is reduced to that which a
legitimate certificate authority was willing to sign.

Backport of #4045
FAlbertDev
FAlbertDev approved these changes May 13, 2024
View reviewed changes
Copy link
Collaborator

@FAlbertDev FAlbertDev left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. I agree that checking the signature chain first is very sensible.

@randombit randombit merged commit 39535f1 into master May 13, 2024
43 checks passed
@randombit randombit deleted the jack/x509-path-sigs-first branch May 13, 2024 10:49
randombit added a commit that referenced this pull request May 13, 2024
@randombit
Merge pull request #4052 from randombit/jack/backport-4045
477822a 
[#4045 Backport] During X.509 verification, first check the signatures
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@FAlbertDev FAlbertDev FAlbertDev approved these changes

@reneme reneme Awaiting requested review from reneme

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@randombit @coveralls @FAlbertDev