DGNum/hostapd
6
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

TLS: Add a debug information on unsupported private key format

Browse source 
Provide easier to understand reason for failure to use the old
OpenSSL encrypted private key format.

Signed-hostap: Jouni Malinen <j@w1.fi>
This commit is contained in:
Jouni Malinen 2011-11-27 13:21:36 +02:00
parent e670738ae0
commit e770c497eb
1 changed files with 7 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
src/tls/tlsv1_cred.c
View file

@ -244,10 +244,17 @@ static struct crypto_private_key * tlsv1_set_key_pem(const u8 *key, size_t len)
if (!end) if (!end)
return NULL; return NULL;
} else { } else {
const u8 *pos2;
pos += os_strlen(pem_key_begin); pos += os_strlen(pem_key_begin);
end = search_tag(pem_key_end, pos, key + len - pos); end = search_tag(pem_key_end, pos, key + len - pos);
if (!end) if (!end)
return NULL; return NULL;
pos2 = search_tag("Proc-Type: 4,ENCRYPTED", pos, end - pos);
if (pos2) {
wpa_printf(MSG_DEBUG, "TLSv1: Unsupported private key "
"format (Proc-Type/DEK-Info)");
return NULL;
}
} }
der = base64_decode(pos, end - pos, &der_len); der = base64_decode(pos, end - pos, &der_len);