diff options
| author | Fraser Tweedale <frase@frase.id.au> | 2017-05-29 16:33:20 -0500 |
|---|---|---|
| committer | Paul Kehrer <paul.l.kehrer@gmail.com> | 2017-05-29 16:33:20 -0500 |
| commit | d607dd7e5bc5c08854ec0c9baff70ba4a35be36f (patch) | |
| tree | 1baa1b7d0cc1ba9a5b500abdf044962aabbb702f /docs/development | |
| parent | 7bc36865fcdb1057a4d2925d28f688c5590d6eaf (diff) | |
| download | cryptography-d607dd7e5bc5c08854ec0c9baff70ba4a35be36f.tar.gz cryptography-d607dd7e5bc5c08854ec0c9baff70ba4a35be36f.tar.bz2 cryptography-d607dd7e5bc5c08854ec0c9baff70ba4a35be36f.zip | |
Enlarge _oid2txt buffer to handle larger OIDs (#3612)
The OpenSSL manual recommends a buffer size of 80 for OBJ_oid2txt:
https://www.openssl.org/docs/crypto/OBJ_nid2ln.html#return_values.
But OIDs longer than this occur in real life (e.g. Active Directory
makes some very long OIDs). If the length of the stringified OID
exceeds the buffer size, allocate a new buffer that is big enough to
hold the stringified OID, and re-do the conversion into the new
buffer.
Diffstat (limited to 'docs/development')
| -rw-r--r-- | docs/development/test-vectors.rst | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/docs/development/test-vectors.rst b/docs/development/test-vectors.rst index 868619a6..a1d8b11e 100644 --- a/docs/development/test-vectors.rst +++ b/docs/development/test-vectors.rst @@ -156,6 +156,9 @@ X.509 RSA with SHA1. * ``badssl-sct.pem`` - A certificate with the certificate transparency signed certificate timestamp extension. +* ``bigoid.pem`` - A certificate with a rather long OID in the + Certificate Policies extension. We need to make sure we can parse + long OIDs. Custom X.509 Vectors ~~~~~~~~~~~~~~~~~~~~ |