abc/GmSSL
1
0
Fork 0
mirror of https://github.com/guanzhi/GmSSL.git synced 2026-05-31 06:53:58 +08:00
Code Issues Packages Projects Releases Wiki Activity

Fix SM2 certificate verification

Browse Source 
Set the default ec_scheme to secg_scheme, add sm3 ZID to X.509
verification.
This commit is contained in:
Zhi Guan
2018-01-11 23:37:28 +08:00
parent fd8da09d28
commit 755814db52
7 changed files with 5368 additions and 5357 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
crypto/ec/ec_pmeth.c
View File

@@ -60,10 +60,10 @@ static int pkey_ec_init(EVP_PKEY_CTX *ctx)
dctx->cofactor_mode = -1;
dctx->kdf_type = EVP_PKEY_ECDH_KDF_NONE;
#ifndef OPENSSL_NO_SM2
dctx->ec_scheme = NID_sm_scheme;
dctx->ec_scheme = NID_secg_scheme;
dctx->signer_id = NULL;
dctx->signer_zid = NULL;
dctx->ec_encrypt_param = NID_sm3;
dctx->ec_encrypt_param = NID_undef;
#endif
ctx->data = dctx;
return 1;