Accueil Explorer Aide
S'inscrire Connexion
wareck
/
krackattacks
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Parcourir la source

Fix OCSP debug messages

These were not supposed to include a newline at the end of the message
text since such formatting gets handled by tls_show_errors(). In
addition, change the message about the issuer's issuer to be more
accurate.

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
Jouni Malinen il y a 10 ans
Parent
710dfb4e32
commit
58d405fcdb
2 fichiers modifiés avec 6 ajouts et 6 suppressions
Vue séparée Afficher les stats Diff
  1. 3 3
      src/crypto/tls_openssl.c
  2. 3 3
      src/utils/http_curl.c

+ 3 - 3
src/crypto/tls_openssl.c
Voir le fichier 

@@ -3153,7 +3153,7 @@ static int ocsp_resp_cb(SSL *s, void *arg)
 
 
 		if (X509_STORE_add_cert(store, conn->peer_issuer) != 1) {
 
 			tls_show_errors(MSG_INFO, __func__,
 
-					"OpenSSL: Could not add issuer to certificate store\n");
 
+					"OpenSSL: Could not add issuer to certificate store");
 
 		}
 
 		certs = sk_X509_new_null();
 
 		if (certs) {
 
@@ -3162,7 +3162,7 @@ static int ocsp_resp_cb(SSL *s, void *arg)
 
 			if (cert && !sk_X509_push(certs, cert)) {
 
 				tls_show_errors(
 
 					MSG_INFO, __func__,
 
-					"OpenSSL: Could not add issuer to OCSP responder trust store\n");
 
+					"OpenSSL: Could not add issuer to OCSP responder trust store");
 
 				X509_free(cert);
 
 				sk_X509_free(certs);
 
 				certs = NULL;
 
@@ -3172,7 +3172,7 @@ static int ocsp_resp_cb(SSL *s, void *arg)
 
 				if (cert && !sk_X509_push(certs, cert)) {
 
 					tls_show_errors(
 
 						MSG_INFO, __func__,
 
-						"OpenSSL: Could not add issuer to OCSP responder trust store\n");
 
+						"OpenSSL: Could not add issuer's issuer to OCSP responder trust store");
 
 					X509_free(cert);
 
 				}
 
 			}

+ 3 - 3
src/utils/http_curl.c
Voir le fichier 

@@ -1084,7 +1084,7 @@ static int ocsp_resp_cb(SSL *s, void *arg)
 
 
 		if (X509_STORE_add_cert(store, ctx->peer_issuer) != 1) {
 
 			tls_show_errors(__func__,
 
-					"OpenSSL: Could not add issuer to certificate store\n");
 
+					"OpenSSL: Could not add issuer to certificate store");
 
 		}
 
 		certs = sk_X509_new_null();
 
 		if (certs) {
 
@@ -1093,7 +1093,7 @@ static int ocsp_resp_cb(SSL *s, void *arg)
 
 			if (cert && !sk_X509_push(certs, cert)) {
 
 				tls_show_errors(
 
 					__func__,
 
-					"OpenSSL: Could not add issuer to OCSP responder trust store\n");
 
+					"OpenSSL: Could not add issuer to OCSP responder trust store");
 
 				X509_free(cert);
 
 				sk_X509_free(certs);
 
 				certs = NULL;
 
@@ -1103,7 +1103,7 @@ static int ocsp_resp_cb(SSL *s, void *arg)
 
 				if (cert && !sk_X509_push(certs, cert)) {
 
 					tls_show_errors(
 
 						__func__,
 
-						"OpenSSL: Could not add issuer to OCSP responder trust store\n");
 
+						"OpenSSL: Could not add issuer's issuer to OCSP responder trust store");
 
 					X509_free(cert);
 
 				}
 
 			}