From ca1b6ab41f8a3501d107d93f899da5278e1fc7e4 Mon Sep 17 00:00:00 2001
From: Javi Fontan <jfontan@opennebula.org>
Date: Thu, 7 Mar 2013 12:45:04 +0100
Subject: [PATCH] feature #1790: bug in crl check function

---
 src/authm_mad/remotes/x509/x509_auth.rb | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/authm_mad/remotes/x509/x509_auth.rb b/src/authm_mad/remotes/x509/x509_auth.rb
index 34afa5c20a..24ff82d63f 100644
--- a/src/authm_mad/remotes/x509/x509_auth.rb
+++ b/src/authm_mad/remotes/x509/x509_auth.rb
@@ -199,7 +199,6 @@ private
     ###########################################################################
     def validate
         now    = Time.now
-        failed = "Could not validate user credentials: "
 
         # Check start time and end time of certificates
         @cert_chain.each do |cert|
@@ -251,6 +250,8 @@ private
     end
 
     def check_crl(signee)
+        failed = "Could not validate user credentials: "
+
         ca_hash = signee.issuer.hash.to_s(16)
         ca_path = @options[:ca_dir] + '/' + ca_hash + '.0'