- Updated ssl_cert_test to properly parse return values from

x509parse_verify().
2009-05-03 17:29:56 +00:00 · 2009-05-03 17:29:56 +00:00 · 860d36b9d8
commit 860d36b9d8
parent fdca45fded
1 changed files with 11 additions and 1 deletions
--- a/programs/test/ssl_cert_test.c
+++ b/programs/test/ssl_cert_test.c
@ -146,8 +146,18 @@ int main( void )
        {
            if( ret == POLARSSL_ERR_X509_CERT_VERIFY_FAILED )
            {
-                if( flags == BADCERT_REVOKED )
+                if( flags & BADCERT_CN_MISMATCH )
+                    printf( " CN_MISMATCH " );
+                if( flags & BADCERT_EXPIRED )
+                    printf( " EXPIRED " );
+                if( flags & BADCERT_REVOKED )
                    printf( " REVOKED " );
+                if( flags & BADCERT_NOT_TRUSTED )
+                    printf( " NOT_TRUSTED " );
+                if( flags & BADCRL_NOT_TRUSTED )
+                    printf( " CRL_NOT_TRUSTED " );
+                if( flags & BADCRL_EXPIRED )
+                    printf( " CRL_EXPIRED " );
            } else {
                printf( " failed\n  !  x509parse_verify returned %d\n\n", ret );
                goto exit;