Date: Wed, 16 Sep 2020 23:30:57 +0000 (UTC) From: Rick Macklem <rmacklem@FreeBSD.org> To: src-committers@freebsd.org, svn-src-projects@freebsd.org Subject: svn commit: r365822 - projects/nfs-over-tls/usr.sbin/rpc.tlsservd Message-ID: <202009162330.08GNUvYC002692@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: rmacklem Date: Wed Sep 16 23:30:57 2020 New Revision: 365822 URL: https://svnweb.freebsd.org/changeset/base/365822 Log: Add a check for the CRL file being used to rpctls_checkcrl(). Modified: projects/nfs-over-tls/usr.sbin/rpc.tlsservd/rpc.tlsservd.c Modified: projects/nfs-over-tls/usr.sbin/rpc.tlsservd/rpc.tlsservd.c ============================================================================== --- projects/nfs-over-tls/usr.sbin/rpc.tlsservd/rpc.tlsservd.c Wed Sep 16 23:17:15 2020 (r365821) +++ projects/nfs-over-tls/usr.sbin/rpc.tlsservd/rpc.tlsservd.c Wed Sep 16 23:30:57 2020 (r365822) @@ -1073,6 +1073,9 @@ rpctls_checkcrl(void) X509_REVOKED *revoked; int ret; + if (rpctls_crlfile == NULL || (rpctls_verify_cafile == NULL && + rpctls_verify_capath == NULL)) + return; infile = BIO_new(BIO_s_file()); if (infile == NULL) { rpctlssd_verbose_out("rpctls_checkcrl: Cannot BIO_new\n");
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202009162330.08GNUvYC002692>