fix for default OCSP cmp value and fix for WOLFSSL_NO_CLIENT_AUTH build

2020-12-18 00:36:00 +07:00
parent 9a968bdf53
commit 97bc5e870c
2 changed files with 3 additions and 1 deletions
--- a/tests/suites.c
+++ b/tests/suites.c
@@ -279,7 +279,9 @@ static int IsUsingCert(const char* line)
 {
    return XSTRSTR(line, "-c ") != NULL;
 }
+#endif

+#if defined(NO_CERTS) || defined(WOLFSSL_NO_CLIENT_AUTH)
 static int IsNoClientCert(const char* line)
 {
    const char* begin;
--- a/wolfcrypt/src/asn.c
+++ b/wolfcrypt/src/asn.c
@@ -17556,7 +17556,7 @@ void FreeOcspRequest(OcspRequest* req)

 int CompareOcspReqResp(OcspRequest* req, OcspResponse* resp)
 {
-    int cmp = 0; /* start as matching if both req and resp have no values */
+    int cmp = -1; /* default as not matching, cmp gets set on each check */
    OcspEntry *single, *next, *prev = NULL, *top;

    WOLFSSL_ENTER("CompareOcspReqResp");