CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2024/06/11 01:27:14
Modified files:
usr.sbin/rpki-client: cert.c crl.c
Log message:
rpki-client: simplify signature type checking for certs/CRLs
The OpenSSL 1.1 get_signature_nid() API is available for all libraries
that we support and it does exactly what we want. It is much simpler
than the unergonomic accessors we used previously. The ASN.1 templates
ensure that the relevant struct members aren't NULL after successful
deserialization, so the calls are safe.
ok claudio
