]> git.ipfire.org Git - thirdparty/gnutls.git/commitdiff
projects / thirdparty / gnutls.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 6ee647f)
cli: fix --ca-auto-retrieve crash when no caIssuer is present in AIA
authorDaiki Ueno <ueno@gnu.org>
Thu, 9 Nov 2023 04:33:13 +0000 (13:33 +0900)
committerDaiki Ueno <ueno@gnu.org>
Thu, 9 Nov 2023 04:33:13 +0000 (13:33 +0900)
Previously, when caIssuer URI is not present in the certificate's AIA
extension, the callback successfully returned 0, but didn't initialize
the output arguments, resulting in a segmentation fault in the caller.

Signed-off-by: Daiki Ueno <ueno@gnu.org>
src/cli.c patch | blob | blame | history

diff --git a/src/cli.c b/src/cli.c
index ca29a849f28c45d606eee2e6d3d4718f2d325989..055d102c6ff92f1a46f5e8d560acfce07519d717 100644 (file)
--- a/src/cli.c
+++ b/src/cli.c
@@ -2294,6 +2294,12 @@ static int getissuer_callback(const gnutls_x509_trust_list_t tlist,
                fprintf(stderr,
                        "*** Cannot find caIssuer URI in certificate: %s\n",
                        gnutls_strerror(ret));
+
+               /* Initialize the output arguments as we are not
+                * treating this as error.
+                */
+               *issuers = NULL;
+               *issuers_size = 0;
                return 0;
        }
 
Mirror of https://gitlab.com/gnutls/gnutls.git