oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

Whine if its a non CA/proxy and doesn't have CRL DP.

Browse Source 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20906 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Love Hörnquist Åstrand
2007-06-05 02:23:45 +00:00
parent baee263bda
commit 887bb5f354
1 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
lib/hx509/print.c
View File

@@ -49,6 +49,7 @@ struct cert_status {
unsigned int haveIAN:1; unsigned int haveIAN:1;
unsigned int haveSKI:1; unsigned int haveSKI:1;
unsigned int haveAKI:1; unsigned int haveAKI:1;
unsigned int haveCRLDP:1;
}; };
@@ -424,6 +425,8 @@ check_CRLDistributionPoints(hx509_validate_ctx ctx,
} }
free_CRLDistributionPoints(&dp); free_CRLDistributionPoints(&dp);
status->haveCRLDP = 1;
return 0; return 0;
} }
@@ -793,6 +796,12 @@ hx509_validate_cert(hx509_context context,
validate_print(ctx, HX509_VALIDATE_F_VALIDATE, validate_print(ctx, HX509_VALIDATE_F_VALIDATE,
"NULL subject DN and doesn't have a SAN\n"); "NULL subject DN and doesn't have a SAN\n");
if (!status.isca && !status.isproxy && !status.haveCRLDP) {
validate_print(ctx, HX509_VALIDATE_F_VALIDATE,
"Not a CA nor PROXY and doesn't have"
"CRL Dist Point\n");
}
hx509_name_free(&subject); hx509_name_free(&subject);
hx509_name_free(&issuer); hx509_name_free(&issuer);