summaryrefslogtreecommitdiffstats
path: root/pki/base/tps/src/engine/RA.cpp
diff options
context:
space:
mode:
Diffstat (limited to 'pki/base/tps/src/engine/RA.cpp')
-rw-r--r--pki/base/tps/src/engine/RA.cpp9
1 files changed, 6 insertions, 3 deletions
diff --git a/pki/base/tps/src/engine/RA.cpp b/pki/base/tps/src/engine/RA.cpp
index 7b8e7adcc..862b9e105 100644
--- a/pki/base/tps/src/engine/RA.cpp
+++ b/pki/base/tps/src/engine/RA.cpp
@@ -3399,7 +3399,8 @@ TPS_PUBLIC bool RA::verifySystemCertByNickname(const char *nickname, const char
* tps.cert.audit_signing.certusage=ObjectSigner
*/
TPS_PUBLIC bool RA::verifySystemCerts() {
- bool rv = false;
+ bool verifyResult = false;
+ bool rv = false; /* final return value */
char configname[256];
char configname_nn[256];
char configname_cu[256];
@@ -3434,6 +3435,7 @@ TPS_PUBLIC bool RA::verifySystemCerts() {
"cert nickname not found for cert tag:%s", sresult);
PR_snprintf(audit_msg, 512, "%s undefined in CS.cfg", configname_nn);
RA::Audit(EV_CIMC_CERT_VERIFICATION, AUDIT_MSG_FORMAT, "System", "Failure", audit_msg);
+ sresult = PL_strtok_r(NULL, ",", &lasts);
rv = false;
continue;
}
@@ -3451,14 +3453,15 @@ TPS_PUBLIC bool RA::verifySystemCerts() {
"Verifying cert tag: %s, nickname:%s, certificate usage:%s"
, sresult, nn, (cu!=NULL)? cu: "");
- rv = verifySystemCertByNickname(nn, cu);
- if (rv == true) {
+ verifyResult = verifySystemCertByNickname(nn, cu);
+ if (verifyResult == true) {
RA::Debug(LL_PER_SERVER, "RA::verifySystemCerts",
"cert verification passed on cert nickname:%s", nn);
PR_snprintf(audit_msg, 512, "Certificate verification succeeded:%s",
nn);
RA::Audit(EV_CIMC_CERT_VERIFICATION, AUDIT_MSG_FORMAT, "System", "Success", audit_msg);
} else {
+ rv = false;
RA::Debug(LL_PER_SERVER, "RA::verifySystemCerts",
"cert verification failed on cert nickname:%s", nn);
PR_snprintf(audit_msg, 512, "Certificate verification failed:%s",
generated by cgit (git 2.34.1) at 2024-07-03 14:44:09 +0000