mirror of https://github.com/wolfSSL/wolfssl.git
Make the check of the certificate extension critical flag optional based on compile option.
parent
d29118ba58
commit
a0f1c9dbe4
|
@ -7000,13 +7000,15 @@ static int DecodeCertExtensions(DecodedCert* cert)
|
|||
break;
|
||||
|
||||
default:
|
||||
#ifndef WOLFSSL_NO_ASN_STRICT
|
||||
/* While it is a failure to not support critical extensions,
|
||||
* still parse the certificate ignoring the unsupported
|
||||
* extension to allow caller to accept it with the verify
|
||||
* callback. */
|
||||
if (critical)
|
||||
criticalFail = 1;
|
||||
break;
|
||||
#endif
|
||||
break;
|
||||
}
|
||||
idx += length;
|
||||
}
|
||||
|
|
Loading…
Reference in New Issue