feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Merge pull request #712 from moisesguimaraes/fixes-ocsp-lookup

Browse Source 
fixes CA matching when using NO_SKID
This commit is contained in:
Chris Conlon
2017-01-20 16:15:12 -07:00
committed by GitHub
parent 835e3b7953 86a3039e0b
commit 4d83ef1c23
1 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
wolfcrypt/src/asn.c
View File

@ -9677,7 +9677,13 @@ static int DecodeBasicOcspResponse(byte* source, word32* ioIndex,
} }
} }
else { else {
Signer* ca = GetCA(cm, resp->issuerKeyHash); Signer* ca = NULL;
#ifndef NO_SKID
ca = GetCA(cm, resp->issuerKeyHash);
#else
ca = GetCA(cm, resp->issuerHash);
#endif
if (!ca || !ConfirmSignature(resp->response, resp->responseSz, if (!ca || !ConfirmSignature(resp->response, resp->responseSz,
ca->publicKey, ca->pubKeySize, ca->keyOID, ca->publicKey, ca->pubKeySize, ca->keyOID,