]> git.ipfire.org Git - thirdparty/gnutls.git/commitdiff
small optimization in CRL check
authorNikos Mavrogiannopoulos <nmav@gnutls.org>
Fri, 2 Nov 2012 12:01:08 +0000 (13:01 +0100)
committerNikos Mavrogiannopoulos <nmav@gnutls.org>
Fri, 2 Nov 2012 12:01:13 +0000 (13:01 +0100)
lib/x509/verify.c

index 0f3e625f2dae35066e1cce2f68a79048c7c31a94..0a61869cdf5ed59611a0203722681d7581aa6a56 100644 (file)
@@ -989,7 +989,7 @@ _gnutls_verify_crl2 (gnutls_x509_crl_t crl,
 /* CRL is ignored for now */
   gnutls_datum_t crl_signed_data = { NULL, 0 };
   gnutls_datum_t crl_signature = { NULL, 0 };
-  gnutls_x509_crt_t issuer;
+  gnutls_x509_crt_t issuer = NULL;
   int result, hash_algo;
   time_t now = gnutls_time(0);
   unsigned int usage;
@@ -999,13 +999,6 @@ _gnutls_verify_crl2 (gnutls_x509_crl_t crl,
 
   if (tcas_size >= 1)
     issuer = find_crl_issuer (crl, trusted_cas, tcas_size);
-  else
-    {
-      gnutls_assert ();
-      if (output)
-        *output |= GNUTLS_CERT_SIGNER_NOT_FOUND | GNUTLS_CERT_INVALID;
-      return 0;
-    }
 
   /* issuer is not in trusted certificate
    * authorities.