mirror of
https://github.com/deneraraujo/OpenVPNAdapter.git
synced 2026-04-24 00:00:05 +08:00
Sergey Abramchuk
e2ad2ab5d5
git-subtree-dir: Sources/OpenVPNAdapter/Libraries/Vendors/openvpn git-subtree-split: 554d8b88817d3a7b836e78940ed61bb11ed2bd9b
45 lines
1.1 KiB
Diff
45 lines
1.1 KiB
Diff
Patch to 1.1.4 to allow X509 v3 trust extensions.
|
|
--------------------------------------------------
|
|
Index: x509parse.c
|
|
===================================================================
|
|
--- x509parse.c (revision 1322)
|
|
+++ x509parse.c (working copy)
|
|
@@ -1134,7 +1134,7 @@
|
|
{
|
|
int ret;
|
|
size_t len;
|
|
- unsigned char *p, *end;
|
|
+ unsigned char *p, *end, *crt_end;
|
|
|
|
/*
|
|
* Check for valid input
|
|
@@ -1168,13 +1168,14 @@
|
|
return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT );
|
|
}
|
|
|
|
- if( len != (size_t) ( end - p ) )
|
|
+ if( len > (size_t) ( end - p ) )
|
|
{
|
|
x509_free( crt );
|
|
return( POLARSSL_ERR_X509_CERT_INVALID_FORMAT +
|
|
POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
|
|
}
|
|
-
|
|
+ crt_end = p + len;
|
|
+
|
|
/*
|
|
* TBSCertificate ::= SEQUENCE {
|
|
*/
|
|
@@ -1344,7 +1345,7 @@
|
|
POLARSSL_ERR_ASN1_LENGTH_MISMATCH );
|
|
}
|
|
|
|
- end = crt->raw.p + crt->raw.len;
|
|
+ end = crt_end;
|
|
|
|
/*
|
|
* signatureAlgorithm AlgorithmIdentifier,
|
|
|
|
----------------------------------------------------
|
|
End of patch file
|