[ipxe-devel] OCSP issues

[Michael Brown]

On 20/11/14 19:40, Brian Rak wrote:
> I found a nice ASN.1 parser (http://lapo.it/asn1js) that helped me
> figure this out:
>
> \x04, \x014 indicates ASN1_OCTET STRING, 20 bytes
>
> It seems that iPXE isn't reading the tag and type before trying to store
> the responder hash.  I was able to correct this with the following patch:

Fantastic; thanks for debugging this.  I've pushed a patch which 
corrects this and adds a test case based on your certificate's OCSP 
response:

   http://git.ipxe.org/ipxe.git/commitdiff/5cbdc41

Michael