summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
diff options
context:
space:
mode:
authorDamien Miller <djm@cvs.openbsd.org>2013-01-24 22:08:57 +0000
committerDamien Miller <djm@cvs.openbsd.org>2013-01-24 22:08:57 +0000
commita7e6276fe7e37400d8a3be49a1d232f4f4af9ebb (patch)
tree3c5099187eb61f25c51fa1dfc61ad0b80095ebbc /usr.bin/ssh
parent149d5ebecb1b743e0d696e47ba24698410f266be (diff)
skip serial lookup when cert's serial number is zero
Diffstat (limited to 'usr.bin/ssh')
-rw-r--r--usr.bin/ssh/krl.c4
1 files changed, 2 insertions, 2 deletions
diff --git a/usr.bin/ssh/krl.c b/usr.bin/ssh/krl.c
index ad50ee36000..14644a20296 100644
--- a/usr.bin/ssh/krl.c
+++ b/usr.bin/ssh/krl.c
@@ -14,7 +14,7 @@
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/
-/* $OpenBSD: krl.c,v 1.5 2013/01/24 21:45:37 djm Exp $ */
+/* $OpenBSD: krl.c,v 1.6 2013/01/24 22:08:56 djm Exp $ */
#include <sys/types.h>
#include <sys/param.h>
@@ -1147,7 +1147,7 @@ is_key_revoked(struct ssh_krl *krl, const Key *key)
}
/* Legacy cert formats lack serial numbers */
- if (key_cert_is_legacy(key))
+ if (key_cert_is_legacy(key) || key->cert->serial == buf0)
return 0;
bzero(&rs, sizeof(rs));
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-22 17:07:14 +0000