Merge pull request #2855 from irwir/fix_x509_crt.c Remove non-working check from x509_get_subject_alt_name

commit: b1ccff872559ad315e247672e5843f98f580812f [log] [tgz]
author: Gilles Peskine <gilles.peskine@arm.com> Tue May 26 18:32:16 2020 +0200
committer: GitHub <noreply@github.com> Tue May 26 18:32:16 2020 +0200
tree: 479abf7d257541297d45476a54c09ead614a73ae
parent: deacf60f797d6d223a868c981fb8260145d6ceb4 [diff]
parent: d742a2416d3b37e34f051aeca37eb631e39695a6 [diff]
diff --git a/ChangeLog.d/bugfix_PR2855.txt b/ChangeLog.d/bugfix_PR2855.txt
new file mode 100644
index 0000000..a097321
--- /dev/null
+++ b/ChangeLog.d/bugfix_PR2855.txt

@@ -0,0 +1,2 @@
+Bugfix
+   * Remove dead code in X.509 certificate parsing. Contributed by irwir in #2855.
\ No newline at end of file

diff --git a/library/x509_crt.c b/library/x509_crt.c
index 1e62ed5..51e6aac 100644
--- a/library/x509_crt.c
+++ b/library/x509_crt.c

@@ -652,10 +652,6 @@
         mbedtls_x509_subject_alternative_name dummy_san_buf;
         memset( &dummy_san_buf, 0, sizeof( dummy_san_buf ) );
 
-        if( ( end - *p ) < 1 )
-            return( MBEDTLS_ERR_X509_INVALID_EXTENSIONS +
-                    MBEDTLS_ERR_ASN1_OUT_OF_DATA );
-
         tag = **p;
         (*p)++;
         if( ( ret = mbedtls_asn1_get_len( p, end, &tag_len ) ) != 0 )
@@ -669,7 +665,7 @@
         }
 
         /*
-         * Check that the SAN are structured correct.
+         * Check that the SAN is structured correctly.
          */
         ret = mbedtls_x509_parse_subject_alt_name( &(cur->buf), &dummy_san_buf );
         /*
commit	b1ccff872559ad315e247672e5843f98f580812f	[log] [tgz]
author	Gilles Peskine <gilles.peskine@arm.com>	Tue May 26 18:32:16 2020 +0200
committer	GitHub <noreply@github.com>	Tue May 26 18:32:16 2020 +0200
tree	479abf7d257541297d45476a54c09ead614a73ae
parent	deacf60f797d6d223a868c981fb8260145d6ceb4 [diff]
parent	d742a2416d3b37e34f051aeca37eb631e39695a6 [diff]