- Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error

commit: 6c0ceb3f9aacdabeb475acdeae741685bb9d46bb [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Sun Dec 04 12:24:18 2011 +0000
committer: Paul Bakker <p.j.bakker@polarssl.org> Sun Dec 04 12:24:18 2011 +0000
tree: 3225512c927b0e73ac28b4abca7e8c064e5a7be6
parent: a17bcc3033e5193213b05a9c713829689c9f7692 [diff] [blame]
diff --git a/programs/test/ssl_cert_test.c b/programs/test/ssl_cert_test.c
index 57ea32c..2e4e6c5 100644
--- a/programs/test/ssl_cert_test.c
+++ b/programs/test/ssl_cert_test.c

@@ -100,7 +100,7 @@
      * Alternatively, you may load the CA certificates from a .pem or
      * .crt file by calling x509parse_crtfile( &cacert, "myca.crt" ).
      */
-    ret = x509parse_crtfile( &cacert, "ssl/test-ca/test-ca.crt" );
+    ret = x509parse_crtfile( &cacert, "ssl/test-ca/test-ca.crt", X509_NON_PERMISSIVE );
     if( ret != 0 )
     {
         printf( " failed\n  !  x509parse_crtfile returned %d\n\n", ret );
@@ -148,7 +148,7 @@
         printf( "  . Loading the client certificate %s...", name );
         fflush( stdout );
 
-        ret = x509parse_crtfile( &clicert, name );
+        ret = x509parse_crtfile( &clicert, name, X509_NON_PERMISSIVE );
         if( ret != 0 )
         {
             printf( " failed\n  !  x509parse_crt returned %d\n\n", ret );
commit	6c0ceb3f9aacdabeb475acdeae741685bb9d46bb	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Sun Dec 04 12:24:18 2011 +0000
committer	Paul Bakker <p.j.bakker@polarssl.org>	Sun Dec 04 12:24:18 2011 +0000
tree	3225512c927b0e73ac28b4abca7e8c064e5a7be6
parent	a17bcc3033e5193213b05a9c713829689c9f7692 [diff] [blame]