diff options
| author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2017-06-20 09:09:41 +0200 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2017-06-20 12:46:04 +0200 |
| commit | cb1eb976236ad1bda736feb3a86cbad1ac414eba (patch) | |
| tree | aa87e9a4b5a532c2922e5511a2ae83b32a0e3a15 | |
| parent | 12f7e0471ba11b5d7a32674d7c1d76d32f3c1423 (diff) | |
| download | gnutls-cb1eb976236ad1bda736feb3a86cbad1ac414eba.tar.gz | |
ocsp: print response's signature algorithm in compact listing
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
| -rw-r--r-- | lib/x509/ocsp_output.c | 34 |
1 files changed, 18 insertions, 16 deletions
diff --git a/lib/x509/ocsp_output.c b/lib/x509/ocsp_output.c index d5f3ee70a9..9d4191b816 100644 --- a/lib/x509/ocsp_output.c +++ b/lib/x509/ocsp_output.c @@ -510,28 +510,30 @@ print_resp(gnutls_buffer_st * str, gnutls_ocsp_resp_t resp, gnutls_free(oid.data); gnutls_free(data.data); + + } + + ret = gnutls_ocsp_resp_get_signature_algorithm(resp); + if (ret < 0) + addf(str, "error: get_signature_algorithm: %s\n", + gnutls_strerror(ret)); + else { + const char *name = + gnutls_sign_algorithm_get_name(ret); + if (name == NULL) + name = _("unknown"); + addf(str, _("\tSignature Algorithm: %s\n"), name); + } + if (ret != GNUTLS_SIGN_UNKNOWN && gnutls_sign_is_secure(ret) == 0) { + adds(str, + _("warning: signed using a broken signature " + "algorithm that can be forged.\n")); } /* Signature. */ if (format == GNUTLS_OCSP_PRINT_FULL) { gnutls_datum_t sig; - ret = gnutls_ocsp_resp_get_signature_algorithm(resp); - if (ret < 0) - addf(str, "error: get_signature_algorithm: %s\n", - gnutls_strerror(ret)); - else { - const char *name = - gnutls_sign_algorithm_get_name(ret); - if (name == NULL) - name = _("unknown"); - addf(str, _("\tSignature Algorithm: %s\n"), name); - } - if (ret != GNUTLS_SIGN_UNKNOWN && gnutls_sign_is_secure(ret) == 0) { - adds(str, - _("warning: signed using a broken signature " - "algorithm that can be forged.\n")); - } ret = gnutls_ocsp_resp_get_signature(resp, &sig); if (ret < 0) |