Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2025-01-18 17:02:01 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Fix for 162983 - consider all certs revoked if there is a bad CRL in the cache

Browse Source
This commit is contained in:
jpierre%netscape.com 2002-09-06 06:53:03 +00:00
parent 893a5843dc
commit c16a17bc7a
1 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
security/nss/lib/certdb/crl.c
View File

@ -34,7 +34,7 @@
/*
* Moved from secpkcs7.c
*
* $Id: crl.c,v 1.19 2002/09/06 00:27:29 wtc%netscape.com Exp $
* $Id: crl.c,v 1.20 2002/09/06 06:53:03 jpierre%netscape.com Exp $
*/
#include "cert.h"
@ -1270,6 +1270,13 @@ SECStatus DPCache_Lookup(CRLDPCache* cache, SECItem* sn, CERTCrlEntry** returned
CERTCrlEntry* acrlEntry = NULL;
if (!cache || !sn) {
/* no cache or SN to look up, this is bad */
PORT_SetError(SEC_ERROR_INVALID_ARGS);
return SECFailure;
}
if (PR_TRUE == cache->invalid) {
/* the cache contains a bad CRL, consider all certs revoked
as a security measure */
PORT_SetError(SEC_ERROR_CRL_INVALID);
return SECFailure;
}
if (!cache->full) {