Fixes #8377. Signed-off-by: Matthias Schulz <mschulz@hilscher.com>

commit: adb3cc4d433466f00ba827d5288577e367fbf1f3 [log] [tgz]
author: Matthias Schulz <mschulz@hilscher.com> Tue Oct 17 11:50:50 2023 +0200
committer: Matthias Schulz <mschulz@hilscher.com> Tue Oct 17 11:57:10 2023 +0200
tree: d0662eb98f6f4e23d3375b85d7770d948e298e56
parent: 2fde39a22c99d5fae16d02e02f1cbc23c9ce6194 [diff] [blame]
diff --git a/library/x509_csr.c b/library/x509_csr.c
index 0b2bb6f..bd45c56 100644
--- a/library/x509_csr.c
+++ b/library/x509_csr.c

@@ -78,6 +78,7 @@
     int ret;
     size_t len;
     unsigned char *end_ext_data;
+    int critical;
     while (*p < end) {
         mbedtls_x509_buf extn_oid = { 0, 0, NULL };
         int ext_type = 0;
@@ -100,6 +101,9 @@
         extn_oid.p = *p;
         *p += extn_oid.len;
 
+        /* Get and ignore optional critical flag */
+        (void)mbedtls_asn1_get_bool(p, end_ext_data, &critical);
+
         /* Data should be octet string type */
         if ((ret = mbedtls_asn1_get_tag(p, end_ext_data, &len,
                                         MBEDTLS_ASN1_OCTET_STRING)) != 0) {
commit	adb3cc4d433466f00ba827d5288577e367fbf1f3	[log] [tgz]
author	Matthias Schulz <mschulz@hilscher.com>	Tue Oct 17 11:50:50 2023 +0200
committer	Matthias Schulz <mschulz@hilscher.com>	Tue Oct 17 11:57:10 2023 +0200
tree	d0662eb98f6f4e23d3375b85d7770d948e298e56
parent	2fde39a22c99d5fae16d02e02f1cbc23c9ce6194 [diff] [blame]