diff options
author | Dr. David von Oheimb <David.von.Oheimb@siemens.com> | 2023-02-01 17:22:17 +0100 |
---|---|---|
committer | Dr. David von Oheimb <dev@ddvo.net> | 2023-04-18 09:09:27 +0200 |
commit | 44e816bd540c8687c1b4995febbde2626a655338 (patch) | |
tree | f1cbf7d88e774e1959ca978637090050a4c10e64 | |
parent | 154625e1090b18c8c306a6b7a6970dbab185c49d (diff) | |
download | openssl-new-44e816bd540c8687c1b4995febbde2626a655338.tar.gz |
CMP cert_response(): add missing rejection status on client rejecting new cert
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com>
(Merged from https://github.com/openssl/openssl/pull/20257)
-rw-r--r-- | crypto/cmp/cmp_client.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/crypto/cmp/cmp_client.c b/crypto/cmp/cmp_client.c index df14d49aa0..dd19b9a6d7 100644 --- a/crypto/cmp/cmp_client.c +++ b/crypto/cmp/cmp_client.c @@ -659,6 +659,7 @@ static int cert_response(OSSL_CMP_CTX *ctx, int sleep, int rid, ERR_raise_data(ERR_LIB_CMP, CMP_R_CERTIFICATE_NOT_ACCEPTED, "rejecting newly enrolled cert with subject: %s; %s", subj, txt); + ctx->status = OSSL_CMP_PKISTATUS_rejection; ret = 0; } OPENSSL_free(subj); |