commit c34804dea2afd10c6dba10e349caefbdf7e0b0e1
author Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com> Fri Sep 08 11:32:19 2023 +0100
committer Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com> Fri Sep 08 11:32:19 2023 +0100
tree b47ab99fc53cefa8df5e420e88c28b5b7884c3dd
parent d34c4262da1a33b462c813b9712796105cadfe30

Fix bug with checking max dn length with hexpairs

Signed-off-by: Agathiyan Bragadeesh <agathiyan.bragadeesh2@arm.com>

library/x509_create.c

diff --git a/library/x509_create.c b/library/x509_create.c
index 6ef33b0..cb9fd69 100644
--- a/library/x509_create.c
+++ b/library/x509_create.c
@@ -168,13 +168,16 @@
                 }
                 *(d++) = n;
                 c++;
-                continue;
-            } else if (c == end || !strchr(" ,=+<>#;\"\\", *c)) {
+            } else if (c < end && strchr(" ,=+<>#;\"\\", *c)) {
+                *(d++) = *c;
+            } else {
                 return MBEDTLS_ERR_X509_INVALID_NAME;
             }
         }
+        else {
+            *(d++) = *c;
+        }
 
-        *(d++) = *c;
 
         if (d - data == MBEDTLS_X509_MAX_DN_NAME_SIZE) {
             return MBEDTLS_ERR_X509_INVALID_NAME;