Skip to content

T
Third Party Openssl

OpenHarmony / Third Party Openssl
1 年多 前同步成功

通知 10
Star 18
Fork 1
T
Third Party Openssl
提交 28b987ae 编写于 作者: D Dr. Stephen Henson
浏览文件
操作

Don't assume requestorName is present for signed requests. ASN1 OCSP module 

fix: certs field is OPTIONAL.
上级 fb596f3b
隐藏空白更改
内联 并排
Showing with 2 addition and 2 deletion
crypto/ocsp/ocsp_asn.c
浏览文件 @ 28b987ae
...@@ -62,7 +62,7 @@ ...@@ -62,7 +62,7 @@
ASN1_SEQUENCE(OCSP_SIGNATURE) = { ASN1_SEQUENCE(OCSP_SIGNATURE) = {
ASN1_SIMPLE(OCSP_SIGNATURE, signatureAlgorithm, X509_ALGOR), ASN1_SIMPLE(OCSP_SIGNATURE, signatureAlgorithm, X509_ALGOR),
ASN1_SIMPLE(OCSP_SIGNATURE, signature, ASN1_BIT_STRING), ASN1_SIMPLE(OCSP_SIGNATURE, signature, ASN1_BIT_STRING),
ASN1_EXP_SEQUENCE_OF(OCSP_SIGNATURE, certs, X509, 0) ASN1_EXP_SEQUENCE_OF_OPT(OCSP_SIGNATURE, certs, X509, 0)
} ASN1_SEQUENCE_END(OCSP_SIGNATURE) } ASN1_SEQUENCE_END(OCSP_SIGNATURE)
IMPLEMENT_ASN1_FUNCTIONS(OCSP_SIGNATURE) IMPLEMENT_ASN1_FUNCTIONS(OCSP_SIGNATURE)
......
crypto/ocsp/ocsp_vfy.c
浏览文件 @ 28b987ae
...@@ -367,7 +367,7 @@ int OCSP_request_verify(OCSP_REQUEST *req, STACK_OF(X509) *certs, X509_STORE *st ...@@ -367,7 +367,7 @@ int OCSP_request_verify(OCSP_REQUEST *req, STACK_OF(X509) *certs, X509_STORE *st
return 0; return 0;
} }
gen = req->tbsRequest->requestorName; gen = req->tbsRequest->requestorName;
if (gen->type != GEN_DIRNAME) if (!gen || gen->type != GEN_DIRNAME)
{ {
OCSPerr(OCSP_F_OCSP_REQUEST_VERIFY, OCSP_R_UNSUPPORTED_REQUESTORNAME_TYPE); OCSPerr(OCSP_F_OCSP_REQUEST_VERIFY, OCSP_R_UNSUPPORTED_REQUESTORNAME_TYPE);
return 0; return 0;
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册