Re: [PATCH] wolfSSL: Client cert loading API fix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Wed, Oct 21, 2020 at 05:59:53PM +0200, Juliusz Sosinowicz wrote:
> Client cert loading API should check equality to SSL_SUCCESS for success.

Thanks, applied.

> diff --git a/src/crypto/tls_wolfssl.c b/src/crypto/tls_wolfssl.c
> @@ -480,7 +480,7 @@ static int tls_connection_client_cert(struct tls_connection *conn,
>  
>  	if (client_cert) {
>  		if (wolfSSL_use_certificate_chain_file(conn->ssl,
> -						       client_cert) < 0) {
> +						       client_cert) != SSL_SUCCESS) {
>  			wpa_printf(MSG_INFO,
>  				   "SSL: use client cert PEM file failed");
>  			if (wolfSSL_use_certificate_chain_file_format(

I'm assuming this wolfSSL_use_certificate_chain_file_format() call is
supposed to use the same error checking, so I updated that as well to
get all the wolfSSL_use_certificate_*() cases covered.
 
-- 
Jouni Malinen                                            PGP id EFC895FA

_______________________________________________
Hostap mailing list
Hostap@xxxxxxxxxxxxxxxxxxx
http://lists.infradead.org/mailman/listinfo/hostap
[Index of Archives]     [Linux Wireless]     [Linux Kernel]     [ATH6KL]     [Linux Bluetooth]     [Linux Netdev]     [Kernel Newbies]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Samba]     [Device Mapper]

  Powered by Linux