boringssl

History

David Benjamin bc2562e50e Treat PKCS#12 passwords as UTF-8. This aligns with OpenSSL 1.1.0's behavior, which deviated from OpenSSL 1.0.2. OpenSSL 1.0.2 effectively assumed input passwords were always Latin-1. Update-Note: If anyone was using PKCS#12 passwords with non-ASCII characters, this changes them from being encoding-confused to hopefully interpretting "correctly". If this breaks anything, we can add a fallback to PKCS12_get_key_and_certs/PKCS12_parse, but OpenSSL 1.1.0 does not have such behavior. It only implements a fallback in the command-line tool, not the APIs. Change-Id: I0aa92db26077b07a40f85b89f4d3e0f6b0d7be87 Reviewed-on: https://boringssl-review.googlesource.com/28326 Reviewed-by: Adam Langley <agl@google.com>	2018-05-11 21:58:56 +00:00
..
openssl	Treat PKCS#12 passwords as UTF-8.	2018-05-11 21:58:56 +00:00

David Benjamin bc2562e50e Treat PKCS#12 passwords as UTF-8.

This aligns with OpenSSL 1.1.0's behavior, which deviated from OpenSSL
1.0.2. OpenSSL 1.0.2 effectively assumed input passwords were always
Latin-1.

Update-Note: If anyone was using PKCS#12 passwords with non-ASCII
characters, this changes them from being encoding-confused to hopefully
interpretting "correctly". If this breaks anything, we can add a
fallback to PKCS12_get_key_and_certs/PKCS12_parse, but OpenSSL 1.1.0
does not have such behavior. It only implements a fallback in the
command-line tool, not the APIs.

Change-Id: I0aa92db26077b07a40f85b89f4d3e0f6b0d7be87
Reviewed-on: https://boringssl-review.googlesource.com/28326
Reviewed-by: Adam Langley <agl@google.com>

2018-05-11 21:58:56 +00:00

openssl

Treat PKCS#12 passwords as UTF-8.

2018-05-11 21:58:56 +00:00