gnutls_pcert_import_x509_list: only sort the lists it can sort

author Nikos Mavrogiannopoulos <nmav@redhat.com>

Thu, 27 Nov 2014 15:28:10 +0000 (16:28 +0100)

committer Nikos Mavrogiannopoulos <nmav@redhat.com>

Thu, 27 Nov 2014 15:28:10 +0000 (16:28 +0100)
author Nikos Mavrogiannopoulos <nmav@redhat.com>
Thu, 27 Nov 2014 15:28:10 +0000 (16:28 +0100)
committer Nikos Mavrogiannopoulos <nmav@redhat.com>
Thu, 27 Nov 2014 15:28:10 +0000 (16:28 +0100)
diff --git a/lib/gnutls_pcert.c b/lib/gnutls_pcert.c

index 0ce29898315f25ec32d7adec053b138fe2921903..580bb48bdc6aea2f3c7549ddfe12c9a448750e8f 100644 (file)
--- a/lib/gnutls_pcert.c
+++ b/lib/gnutls_pcert.c
@@ -112,7 +112,7 @@ int gnutls_pcert_import_x509_list(gnutls_pcert_st * pcert,
         gnutls_x509_crt_t *s;
  
         s = crt;
-       if (flags & GNUTLS_X509_CRT_LIST_SORT && *ncrt > 1) {
+       if (flags & GNUTLS_X509_CRT_LIST_SORT && *ncrt > 1 && *ncrt < DEFAULT_MAX_VERIFY_DEPTH) {
                 s = _gnutls_sort_clist(sorted, crt, ncrt, NULL);
                 if (s == crt) {
                         gnutls_assert();
author	Nikos Mavrogiannopoulos <nmav@redhat.com>
	Thu, 27 Nov 2014 15:28:10 +0000 (16:28 +0100)
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>
	Thu, 27 Nov 2014 15:28:10 +0000 (16:28 +0100)