Skip to content

pkcs12: add PKCS12#set_mac #788

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
rhenium merged 1 commit into from
Dec 18, 2024
Merged

pkcs12: add PKCS12#set_mac #788

rhenium merged 1 commit into from
Dec 18, 2024

Conversation

@rhenium
Copy link
Member

@rhenium rhenium commented Aug 16, 2024

Add a binding for PKCS12_set_mac() to set MAC parameters and (re-)calculate MAC for the content.

This allows generating PKCS#12 with consistent MAC parameters with different OpenSSL versions. OpenSSL 3.0 changed the default hash function used for HMAC and the KDF from SHA-1 to SHA-256.

Fixes: #772

@rhenium rhenium force-pushed the ky/pkcs12-set-mac branch 2 times, most recently from e25358d to 137379d Compare October 31, 2024 09:15
@rhenium
pkcs12: add PKCS12#set_mac
f5ed2a7 
Add a binding for PKCS12_set_mac() to set MAC parameters and
(re-)calculate MAC for the content.

This allows generating PKCS ruby#12 with consistent MAC parameters with
different OpenSSL versions. OpenSSL 3.0 changed the default hash
function used for HMAC and the KDF from SHA-1 to SHA-256.

Fixes: ruby#772
@rhenium rhenium merged commit b718965 into ruby:master Dec 18, 2024
59 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Add support for specifying PKCS#12 MAC parameters

1 participant

@rhenium