feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Merge pull request #2147 from kaleb-himes/ZD4615-extAuthKeyIdNotSetInCAFix

Browse Source 
Edge case fix for AKID not set in CA and two CAs with same issuer line
This commit is contained in:
John Safranek
2019-03-12 11:59:10 -07:00
committed by GitHub
parent 666e47faaa de21642db1
commit 7ac5f8fde1
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
wolfcrypt/src/asn.c
View File

@ -8086,6 +8086,8 @@ int ParseCertRelative(DecodedCert* cert, int type, int verify, void* cm)
#ifndef NO_SKID #ifndef NO_SKID
if (cert->extAuthKeyIdSet) if (cert->extAuthKeyIdSet)
cert->ca = GetCA(cm, cert->extAuthKeyId); cert->ca = GetCA(cm, cert->extAuthKeyId);
if (cert->ca == NULL && cert->extSubjKeyIdSet)
cert->ca = GetCA(cm, cert->extSubjKeyId);
if (cert->ca == NULL) if (cert->ca == NULL)
cert->ca = GetCAByName(cm, cert->issuerHash); cert->ca = GetCAByName(cm, cert->issuerHash);