espressif/esp-idf
1
0
Fork 1
mirror of https://github.com/espressif/esp-idf.git synced 2025-08-01 03:34:32 +02:00
Code Issues Packages Projects Releases Wiki Activity

esp_crt_bundle: Allow verify_callback to correct BADCERT_BAD_MD

Browse Source
This commit is contained in:
Jeff Epler
2020-11-13 14:42:07 -06:00
committed by Marius Vikhammer
parent 820e092a8d
commit a79cb9f8cd
1 changed files with 4 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
components/mbedtls/esp_crt_bundle/esp_crt_bundle.c
View File

@@ -97,7 +97,10 @@ int esp_crt_verify_callback(void *buf, mbedtls_x509_crt *crt, int data, uint32_t
{
mbedtls_x509_crt *child = crt;
if (*flags != MBEDTLS_X509_BADCERT_NOT_TRUSTED) {
if (!*flags) {
return 0;
}
if (*flags & ~(MBEDTLS_X509_BADCERT_NOT_TRUSTED | MBEDTLS_X509_BADCERT_BAD_MD)) {
return 0;
}