added the hash of the issuer's public key to the decoded cert

2012-05-08 15:12:33 -07:00
parent 4d9fe4dafe
commit 81a6ed4577
2 changed files with 12 additions and 0 deletions
--- a/ctaocrypt/src/asn.c
+++ b/ctaocrypt/src/asn.c
@@ -2183,6 +2183,15 @@ int ParseCertRelative(DecodedCert* cert, int type, int verify, void* cm)
        CYASSL_MSG("About to verify certificate signature");
 
        if (ca) {
+#ifdef HAVE_OCSP
+            /* Need the ca's public key hash for OCSP */
+            {
+                Sha sha;
+                InitSha(&sha);
+                ShaUpdate(&sha, ca->publicKey, ca->pubKeySize);
+                ShaFinal(&sha, cert->issuerKeyHash);
+            }
+#endif /* HAVE_OCSP */
            /* try to confirm/verify signature */
            if (!ConfirmSignature(cert, ca->publicKey,
                                  ca->pubKeySize, ca->keyOID)) {