From: Tobias Brunner <tobias@strongswan.org>
Date: Tue, 25 Aug 2020 14:11:59 +0000 (+0200)
Subject: tls-peer: Fix parsing of intermediate CA certificates
X-Git-Tag: 5.9.2rc1~23^2~85
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=4c40a3d3f06c945bf23d571c84e9cd6b44bc3175;p=thirdparty%2Fstrongswan.git

tls-peer: Fix parsing of intermediate CA certificates
---

diff --git a/src/libtls/tls_peer.c b/src/libtls/tls_peer.c
index dfc15cc05f..6bec0219b5 100644
--- a/src/libtls/tls_peer.c
+++ b/src/libtls/tls_peer.c
@@ -469,12 +469,10 @@ static status_t process_certificate(private_tls_peer_t *this,
 		{
 			if (!certs->read_data16(certs, &data))
 			{
-				DBG1(DBG_TLS, "reading extension field of certificate failed",
-					 &data);
+				DBG1(DBG_TLS, "failed to read extensions of CertificateEntry");
 				this->alert->add(this->alert, TLS_FATAL, TLS_DECODE_ERROR);
 				return NEED_MORE;
 			}
-			break;
 		}
 	}
 	certs->destroy(certs);