Log validation status of trust anchors too

svn path=/rcynic/rcynic.c; revision=3886
author: Rob Austein <sra@hactrn.net> 2011-06-17 22:32:09 +0000
committer: Rob Austein <sra@hactrn.net> 2011-06-17 22:32:09 +0000
commit: 6575e8d7788aba7c78ab22321422b72fc2a01b03 (patch)
tree: 05d4284a00cca54d661ff1ec0efcaa8f67535f6a
parent: 56b28530e0f89f173fb64851ae024d3313540f54 (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/rcynic/rcynic.c b/rcynic/rcynic.c
index 9400e6b7..76de5717 100644
--- a/rcynic/rcynic.c
+++ b/rcynic/rcynic.c
@@ -3458,6 +3458,8 @@ int main(int argc, char *argv[])
 
     assert(val && val->name && val->value);
 
+    uri[0] = '\0';
+
     if (!name_cmp(val->name, "trust-anchor")) {
       /*
        * Old local file trust anchor method.
@@ -3569,13 +3571,15 @@ int main(int argc, char *argv[])
       goto done;
     }
 
-    parse_cert(&rc, x, &ta_info, "");
+    parse_cert(&rc, x, &ta_info, uri);
     ta_info.ta = 1;
     sk_X509_push(certs, x);
 
     if (ta_info.crldp[0] && !check_x509(&rc, certs, x, &ta_info)) {
       logmsg(&rc, log_data_err, "Couldn't get CRL for trust anchor %s", path1);
     } else {
+      if (*uri)
+	log_validation_status(&rc, uri, validation_ok);
       walk_cert(&rc, &ta_info, certs);
     }
author	Rob Austein <sra@hactrn.net>	2011-06-17 22:32:09 +0000
committer	Rob Austein <sra@hactrn.net>	2011-06-17 22:32:09 +0000
commit	6575e8d7788aba7c78ab22321422b72fc2a01b03 (patch)
tree	05d4284a00cca54d661ff1ec0efcaa8f67535f6a
parent	56b28530e0f89f173fb64851ae024d3313540f54 (diff)