feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Keep untrustedDepth = 0 for self signed certs

Browse Source
This commit is contained in:
Juliusz Sosinowicz
2019-12-27 17:48:34 +01:00
parent 3f13b49fa3
commit 38f466bdfe
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/internal.c
View File

@ -10151,7 +10151,8 @@ int ProcessPeerCerts(WOLFSSL* ssl, byte* input, word32* inOutIdx,
#ifdef OPENSSL_EXTRA #ifdef OPENSSL_EXTRA
/* Determine untrusted depth */ /* Determine untrusted depth */
if (!alreadySigner) { if (!alreadySigner && (!args->dCert ||
!args->dCertInit || !args->dCert->selfSigned)) {
args->untrustedDepth = 1; args->untrustedDepth = 1;
} }
#endif #endif