mirror of
https://github.com/vanhoefm/fragattacks.git
synced 2024-11-29 02:38:22 -05:00
OpenSSL: Split OCSP peer_cert/peer_issuer debug output into parts
This makes it clearer which certificate was missing. Signed-hostap: Jouni Malinen <jouni@qca.qualcomm.com>
This commit is contained in:
parent
f224cf05ab
commit
762c92a444
@ -2862,8 +2862,15 @@ static int ocsp_resp_cb(SSL *s, void *arg)
|
||||
|
||||
wpa_printf(MSG_DEBUG, "OpenSSL: OCSP response verification succeeded");
|
||||
|
||||
if (!conn->peer_cert || !conn->peer_issuer) {
|
||||
wpa_printf(MSG_DEBUG, "OpenSSL: Peer certificate or issue certificate not available for OCSP status check");
|
||||
if (!conn->peer_cert) {
|
||||
wpa_printf(MSG_DEBUG, "OpenSSL: Peer certificate not available for OCSP status check");
|
||||
OCSP_BASICRESP_free(basic);
|
||||
OCSP_RESPONSE_free(rsp);
|
||||
return 0;
|
||||
}
|
||||
|
||||
if (!conn->peer_issuer) {
|
||||
wpa_printf(MSG_DEBUG, "OpenSSL: Peer issuer certificate not available for OCSP status check");
|
||||
OCSP_BASICRESP_free(basic);
|
||||
OCSP_RESPONSE_free(rsp);
|
||||
return 0;
|
||||
|
Loading…
Reference in New Issue
Block a user