wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 10:47:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix when extAuthKeyIdSet is set.

Browse Source 
Was set when extension is seen - extension may not have hash.
But is used to indicate that the hash is set - ie look up by hash.
This commit is contained in:
Sean Parkinson
2020-01-10 09:28:45 +10:00
parent d257003341
commit 6e8f3faedd
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
wolfcrypt/src/asn.c
View File

@ -7554,6 +7554,7 @@ static int DecodeAuthKeyId(const byte* input, int sz, DecodedCert* cert)
if (tag != (ASN_CONTEXT_SPECIFIC | 0)) { if (tag != (ASN_CONTEXT_SPECIFIC | 0)) {
WOLFSSL_MSG("\tinfo: OPTIONAL item 0, not available\n"); WOLFSSL_MSG("\tinfo: OPTIONAL item 0, not available\n");
cert->extAuthKeyIdSet = 0;
return 0; return 0;
} }
@ -8490,7 +8491,6 @@ static int CheckCertSignature_ex(const byte* cert, word32 certSz, void* heap,
if (ret == 0) { if (ret == 0) {
switch (oid) { switch (oid) {
case AUTH_KEY_OID: case AUTH_KEY_OID:
extAuthKeyIdSet = 1;
if (GetSequence(cert, &extIdx, &extLen, certSz) < 0) if (GetSequence(cert, &extIdx, &extLen, certSz) < 0)
ret = ASN_PARSE_E; ret = ASN_PARSE_E;
@ -8503,6 +8503,7 @@ static int CheckCertSignature_ex(const byte* cert, word32 certSz, void* heap,
if (GetLength(cert, &extIdx, &extLen, certSz) <= 0) if (GetLength(cert, &extIdx, &extLen, certSz) <= 0)
ret = ASN_PARSE_E; ret = ASN_PARSE_E;
if (ret == 0) { if (ret == 0) {
extAuthKeyIdSet = 1;
if (extLen == KEYID_SIZE) if (extLen == KEYID_SIZE)
XMEMCPY(hash, cert + extIdx, extLen); XMEMCPY(hash, cert + extIdx, extLen);
else { else {