commit db128f518ccbb8e902e1234571a0412834a7be1f
author Przemek Stekiel <przemyslaw.stekiel@mobica.com> Mon Jan 16 13:33:19 2023 +0100
committer Przemek Stekiel <przemyslaw.stekiel@mobica.com> Tue Jan 24 10:57:19 2023 +0100
tree aa6bb9c1ac3a3b4bc85bef36505106d09abf1a93
parent 21c37288e5d4747e1ec898abcc212ef8a7b19f68

Allow empty ns_cert_type, key_usage while parsing certificates

Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>

library/x509_crt.c

diff --git a/library/x509_crt.c b/library/x509_crt.c
index a4eb712..f77991e 100644
--- a/library/x509_crt.c
+++ b/library/x509_crt.c
@@ -573,6 +573,11 @@
         return MBEDTLS_ERROR_ADD(MBEDTLS_ERR_X509_INVALID_EXTENSIONS, ret);
     }
 
+    if (bs.len == 0) {
+        *ns_cert_type = 0;
+        return 0;
+    }
+
     if (bs.len != 1) {
         return MBEDTLS_ERROR_ADD(MBEDTLS_ERR_X509_INVALID_EXTENSIONS,
                                  MBEDTLS_ERR_ASN1_INVALID_LENGTH);
@@ -595,6 +600,11 @@
         return MBEDTLS_ERROR_ADD(MBEDTLS_ERR_X509_INVALID_EXTENSIONS, ret);
     }
 
+    if (bs.len == 0) {
+        *key_usage = 0;
+        return 0;
+    }
+
     if (bs.len < 1) {
         return MBEDTLS_ERROR_ADD(MBEDTLS_ERR_X509_INVALID_EXTENSIONS,
                                  MBEDTLS_ERR_ASN1_INVALID_LENGTH);