From 865a4066fc087bfa4e2f5db902a03c7819127055 Mon Sep 17 00:00:00 2001 From: zhengchao Date: Sun, 11 Nov 2018 17:41:23 +0800 Subject: [PATCH] =?UTF-8?q?=E8=AF=81=E4=B9=A6=E6=A0=A1=E9=AA=8C=E5=BF=BD?= =?UTF-8?q?=E7=95=A5CRL=E8=BF=87=E6=9C=9F=E7=9A=84=E9=94=99=E8=AF=AF?= =?UTF-8?q?=E3=80=82?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- platform/src/ssl_trusted_cert_storage.cpp | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/platform/src/ssl_trusted_cert_storage.cpp b/platform/src/ssl_trusted_cert_storage.cpp index cd2f2da..6537431 100644 --- a/platform/src/ssl_trusted_cert_storage.cpp +++ b/platform/src/ssl_trusted_cert_storage.cpp @@ -288,7 +288,9 @@ int ssl_trusted_cert_storage_verify_conn(struct ssl_trusted_cert_storage* storag //If a complete chain can be built and validated this function returns 1, otherwise it return zero or negtive code. ret = X509_verify_cert(ctx); err_code=X509_STORE_CTX_get_error(ctx); - if(ret!=1 && err_code!=X509_V_ERR_UNABLE_TO_GET_CRL && err_code!=X509_V_ERR_DIFFERENT_CRL_SCOPE) + if(ret!=1 && err_code!=X509_V_ERR_UNABLE_TO_GET_CRL + && err_code!=X509_V_ERR_DIFFERENT_CRL_SCOPE + && err_code!=X509_V_ERR_CRL_HAS_EXPIRED) { subj=ssl_x509_subject(cert); issuer=ssl_x509_issuer(cert);