Comment on attachment 366681
Patch v3 - for review
r+
I do have some caveats:
1) we define a policy to turn off SMIME signatures, but there is not code for that.
2) we probably should have a policy for *all* signatures (including those the application validates using the VFY_ directly).
3) ssl3 uses PK11_Verify directly. Currently it either uses or includes a SHA1 hash, but if SHA1 is turned off by policy, SSL would continue to accept client auth certs even though they use sha1 or sha1+md5 signatures. I supposed we can live with that until TLS 1.2 where we have hash agility, but we should make the conscious decision to do so rather than do so by default.
Anyway this patch provides important step forward, and is self contained, so an r+
Comment on attachment 366681
Patch v3 - for review
r+
I do have some caveats:
1) we define a policy to turn off SMIME signatures, but there is not code for that.
2) we probably should have a policy for *all* signatures (including those the application validates using the VFY_ directly).
3) ssl3 uses PK11_Verify directly. Currently it either uses or includes a SHA1 hash, but if SHA1 is turned off by policy, SSL would continue to accept client auth certs even though they use sha1 or sha1+md5 signatures. I supposed we can live with that until TLS 1.2 where we have hash agility, but we should make the conscious decision to do so rather than do so by default.
Anyway this patch provides important step forward, and is self contained, so an r+
bob
bob