wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 18:57:27 +02:00
Code Issues Packages Projects Releases Wiki Activity

OID

Browse Source 
1. When checking an OID sum against an OID string based on context, skip the unknown OIDs instead of treating them as parse errors.
2. When getting an OID, pass the lower error upstream instead of just PARSE error.
This commit is contained in:
John Safranek
2018-06-29 17:06:23 -07:00
parent 7f324d2c3b
commit bd5e507617
1 changed files with 7 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
wolfcrypt/src/asn.c
View File

@ -6437,9 +6437,9 @@ static int DecodeKeyUsage(byte* input, int sz, DecodedCert* cert)
static int DecodeExtKeyUsage(byte* input, int sz, DecodedCert* cert) static int DecodeExtKeyUsage(byte* input, int sz, DecodedCert* cert)
{ {
word32 idx = 0, oid; word32 idx = 0, oid;
int length; int length, ret;
WOLFSSL_ENTER("DecodeExtKeyUsage"); WOLFSSL_MSG("DecodeExtKeyUsage");
if (GetSequence(input, &idx, &length, sz) < 0) { if (GetSequence(input, &idx, &length, sz) < 0) {
WOLFSSL_MSG("\tfail: should be a SEQUENCE"); WOLFSSL_MSG("\tfail: should be a SEQUENCE");
@ -6452,8 +6452,11 @@ static int DecodeExtKeyUsage(byte* input, int sz, DecodedCert* cert)
#endif #endif
while (idx < (word32)sz) { while (idx < (word32)sz) {
if (GetObjectId(input, &idx, &oid, oidCertKeyUseType, sz) < 0) ret = GetObjectId(input, &idx, &oid, oidCertKeyUseType, sz);
return ASN_PARSE_E; if (ret == ASN_UNKNOWN_OID_E)
continue;
else if (ret < 0)
return ret;
switch (oid) { switch (oid) {
case EKU_ANY_OID: case EKU_ANY_OID: