- Allowed X509 key usage parsing to accept 4 byte values instead of the standard 1 byte version sometimes used by Microsoft. (Closes ticket #38)
This commit is contained in:
parent
03a30d34dc
commit
cebdf17159
2 changed files with 3 additions and 1 deletions
|
@ -26,6 +26,8 @@ Bugfix
|
||||||
ticket #37)
|
ticket #37)
|
||||||
* Fixed a bug where the CRL parser expected an EXPLICIT ASN.1 tag
|
* Fixed a bug where the CRL parser expected an EXPLICIT ASN.1 tag
|
||||||
before version numbers
|
before version numbers
|
||||||
|
* Allowed X509 key usage parsing to accept 4 byte values instead of the
|
||||||
|
standard 1 byte version sometimes used by Microsoft. (Closes ticket #38)
|
||||||
|
|
||||||
= Version 1.0.0 released on 2011-07-27
|
= Version 1.0.0 released on 2011-07-27
|
||||||
Features
|
Features
|
||||||
|
|
|
@ -749,7 +749,7 @@ static int x509_get_key_usage( unsigned char **p,
|
||||||
if( ( ret = asn1_get_bitstring( p, end, &bs ) ) != 0 )
|
if( ( ret = asn1_get_bitstring( p, end, &bs ) ) != 0 )
|
||||||
return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
|
return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS + ret );
|
||||||
|
|
||||||
if( bs.len != 1 )
|
if( bs.len > 1 )
|
||||||
return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
|
return( POLARSSL_ERR_X509_CERT_INVALID_EXTENSIONS +
|
||||||
POLARSSL_ERR_ASN1_INVALID_LENGTH );
|
POLARSSL_ERR_ASN1_INVALID_LENGTH );
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue