lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-07-29 11:41:15 +03:00
Code Activity

Merge branch 'origin/iotssl-541-pathlen-bugfix'

Browse Source
This commit is contained in:
Simon Butcher
2015-12-30 07:52:54 +00:00
parent c97b697939 f4569b14c4
commit c4a6ce6a4c
9 changed files with 75 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
library/x509_crt.c
View File

@ -2253,18 +2253,8 @@ int mbedtls_x509_crt_verify_with_profile( mbedtls_x509_crt *crt,
{
/* Look for a parent upwards the chain */
for( parent = crt->next; parent != NULL; parent = parent->next )
{
/* +2 because the current step is not yet accounted for
* and because max_pathlen is one higher than it should be */
if( parent->max_pathlen > 0 &&
parent->max_pathlen < 2 + pathlen )
{
continue;
}
if( x509_crt_check_parent( crt, parent, 0, pathlen == 0 ) == 0 )
break;
}
/* Are we part of the chain or at the top? */
if( parent != NULL )