Amazing-Mirror/fragattacks
1
0
Fork 0
mirror of https://github.com/vanhoefm/fragattacks.git synced 2025-01-18 10:54:03 -05:00
Code Issues Projects Releases Wiki Activity

GnuTLS: Check for any unknown verification failure

Browse Source 
After having checked all known GNUTLS_CERT_* error cases that we care
about, check that no other errors have been indicated by
gnutls_certificate_verify_peers2() as a reason to reject negotiation.

Signed-off-by: Jouni Malinen <j@w1.fi>
This commit is contained in:
Jouni Malinen 2015-01-11 13:05:28 +02:00
parent e0d431a515
commit 4bc13bf709
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
src/crypto/tls_gnutls.c
View File

@ -713,6 +713,13 @@ static int tls_connection_verify_peer(gnutls_session_t session)
goto out; goto out;
} }
if (status != 0) {
wpa_printf(MSG_INFO, "TLS: Unknown verification status: %d",
status);
err = GNUTLS_A_INTERNAL_ERROR;
goto out;
}
os_get_time(&now); os_get_time(&now);
certs = gnutls_certificate_get_peers(session, &num_certs); certs = gnutls_certificate_get_peers(session, &num_certs);