pluto: Avoid potential null-pointer dereference when checking CRLs.

author: Tobias Brunner <tobias@strongswan.org> 2011-04-18 16:35:04 +0200
committer: Tobias Brunner <tobias@strongswan.org> 2011-04-19 13:48:50 +0200
commit: 73ac1f2040c81a2a805adbb97db091026b97a922 (patch)
tree: de86ea64fad5312b8636a65887f2092eef3b698a /src
parent: a61b696380ca5ed20fff723b5a991708f080c07a (diff)
download: strongswan-73ac1f2040c81a2a805adbb97db091026b97a922.tar.bz2
strongswan-73ac1f2040c81a2a805adbb97db091026b97a922.tar.xz
1 files changed, 2 insertions, 1 deletions
diff --git a/src/pluto/crl.c b/src/pluto/crl.c
index 932bbb977..38db0f2fd 100644
--- a/src/pluto/crl.c
+++ b/src/pluto/crl.c
@@ -425,7 +425,8 @@ cert_status_t verify_by_crl(cert_t *cert, time_t *until, time_t *revocationDate,
 		lock_authcert_list("verify_by_crl");
 
 		issuer_cert = get_authcert(issuer, authKeyID, X509_CA);
-		trusted = cert_crl->issued_by(cert_crl, issuer_cert->cert);
+		trusted = issuer_cert ? cert_crl->issued_by(cert_crl, issuer_cert->cert)
+							  : FALSE;
 
 		unlock_authcert_list("verify_by_crl");
author	Tobias Brunner <tobias@strongswan.org>	2011-04-18 16:35:04 +0200
committer	Tobias Brunner <tobias@strongswan.org>	2011-04-19 13:48:50 +0200
commit	73ac1f2040c81a2a805adbb97db091026b97a922 (patch)
tree	de86ea64fad5312b8636a65887f2092eef3b698a /src
parent	a61b696380ca5ed20fff723b5a991708f080c07a (diff)
download	strongswan-73ac1f2040c81a2a805adbb97db091026b97a922.tar.bz2 strongswan-73ac1f2040c81a2a805adbb97db091026b97a922.tar.xz