tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

- djm@cvs.openbsd.org 2013/01/24 22:08:56 

[krl.c]
     skip serial lookup when cert's serial number is zero
This commit is contained in:
Damien Miller 2013-02-12 10:54:54 +11:00
parent ea078462ea
commit 6045f5d574
2 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
ChangeLog
View File

@ -3,6 +3,9 @@
- djm@cvs.openbsd.org 2013/01/24 21:45:37 - djm@cvs.openbsd.org 2013/01/24 21:45:37
[krl.c] [krl.c]
fix handling of (unused) KRL signatures; skip string in correct buffer fix handling of (unused) KRL signatures; skip string in correct buffer
- djm@cvs.openbsd.org 2013/01/24 22:08:56
[krl.c]
skip serial lookup when cert's serial number is zero
20130211 20130211
- (djm) [configure.ac openbsd-compat/openssl-compat.h] Repair build on old - (djm) [configure.ac openbsd-compat/openssl-compat.h] Repair build on old

4
krl.c
View File

@ -14,7 +14,7 @@
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/ */
/* $OpenBSD: krl.c,v 1.5 2013/01/24 21:45:37 djm Exp $ */ /* $OpenBSD: krl.c,v 1.6 2013/01/24 22:08:56 djm Exp $ */
#include "includes.h" #include "includes.h"
@ -1149,7 +1149,7 @@ is_key_revoked(struct ssh_krl *krl, const Key *key)
} }
/* Legacy cert formats lack serial numbers */ /* Legacy cert formats lack serial numbers */
if (key_cert_is_legacy(key)) if (key_cert_is_legacy(key) || key->cert->serial == buf0)
return 0; return 0;
bzero(&rs, sizeof(rs)); bzero(&rs, sizeof(rs));