wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 10:47:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

Make the check of the certificate extension critical flag optional based on compile option.

Browse Source
This commit is contained in:
John Safranek
2018-08-21 10:57:04 -07:00
parent d29118ba58
commit a0f1c9dbe4
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
wolfcrypt/src/asn.c
View File

@ -7000,13 +7000,15 @@ static int DecodeCertExtensions(DecodedCert* cert)
break; break;
default: default:
#ifndef WOLFSSL_NO_ASN_STRICT
/* While it is a failure to not support critical extensions, /* While it is a failure to not support critical extensions,
* still parse the certificate ignoring the unsupported * still parse the certificate ignoring the unsupported
* extension to allow caller to accept it with the verify * extension to allow caller to accept it with the verify
* callback. */ * callback. */
if (critical) if (critical)
criticalFail = 1; criticalFail = 1;
break; #endif
break;
} }
idx += length; idx += length;
} }