Merge pull request #3618 from haydenroche5/ocsp_self_signed_issue

Modify ParseCertRelative to ensure issuerKeyHash gets parsed and copi…
2025-07-30 02:37:28 +02:00 · 2021-01-14 14:22:06 -08:00
parent 22ce25afba 96ece3ac7d
commit 0ac43bb095
1 changed files with 11 additions and 11 deletions
--- a/wolfcrypt/src/asn.c
+++ b/wolfcrypt/src/asn.c
@ -9910,18 +9910,18 @@ int ParseCertRelative(DecodedCert* cert, int type, int verify, void* cm)
                    }
                }
            }
-            #ifdef HAVE_OCSP
-            if (verify != NO_VERIFY && type != CA_TYPE &&
-                                                    type != TRUSTED_PEER_TYPE) {
-                if (cert->ca) {
-                    /* Need the CA's public key hash for OCSP */
-                    XMEMCPY(cert->issuerKeyHash, cert->ca->subjectKeyHash,
-                                                                    KEYID_SIZE);
-                }
-
-            }
-            #endif /* HAVE_OCSP */
        }
+
+        #ifdef HAVE_OCSP
+        if (verify != NO_VERIFY && type != CA_TYPE &&
+                                                type != TRUSTED_PEER_TYPE) {
+            if (cert->ca) {
+                /* Need the CA's public key hash for OCSP */
+                XMEMCPY(cert->issuerKeyHash, cert->ca->subjectKeyHash,
+                                                                KEYID_SIZE);
+            }
+        }
+        #endif /* HAVE_OCSP */
    }
 #if defined(WOLFSSL_RENESAS_TSIP)
    /* prepare for TSIP TLS cert verification API use */