[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Suspected typo in CRL_hash.cpp

To: imc-sfl@xxxxxxxx
Subject: Suspected typo in CRL_hash.cpp
From: Bruce Stephens <bruce.stephens@xxxxxxxxx>
Date: Mon, 18 Jan 2010 16:52:49 +0000
List-archive: <http://www.imc.org/imc-sfl/mail-archive/>
List-id: <imc-sfl.imc.org>
List-unsubscribe: <mailto:imc-sfl-request@imc.org?body=unsubscribe>
Sender: owner-imc-sfl@xxxxxxxxxxxx
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/23.1 (gnu/linux)

A colleague noticed that certificate revoked with reason
privilegeWithdrawn were still being reported as valid (while other
reasons were correctly being regarded as revoked).  I think this is due
to a typo in cml/crl/srv_dll/src/CRL_hash.cpp:

@@ -245,7 +245,7 @@ bool CRLInsert (HashTable *table, Revocation *element, ulong hash_value)
                        element->GetRevocation()->exts &&
                        element->GetRevocation()->exts->reasonCode &&
                        element->GetRevocation()->exts->reasonCode->value &&
-                       (*(short *)element->GetRevocation()->exts->reasonCode->value & CM_CRL_REMOVE_FROM_CRL))
+                       (*(short *)element->GetRevocation()->exts->reasonCode->value == CM_CRL_REMOVE_FROM_CRL))
                {
                        // Remove the entry
                        delete element;

(privilegeWithdrawn is 9, and CM_CRL_REMOVE_FROM_CRL is 8.)

Prev by Date: RSA KEM test vectors
Previous by thread: RSA KEM test vectors
Index(es):
- Date
- Thread