Displaying 1 result from an estimated 1 matches for "3ijil".
Did you mean:
nijil
2024 Jan 24
1
[Bug 3659] New: Certificates are ignored when listing revoked items in a (binary) revocation list
...r2_id25519-cert.pub
> user1_id25519.pub (USER1 ID): REVOKED
> user2_id25519-cert.pub (USER2 ID): REVOKED
4. Displaying the updated content of the revocation list will ignore
the certificate:
ssh-keygen -Qlf my.krl
# KRL version 0
# Generated at 20240122T162948
hash: SHA256:SHA256:3IJIl... # ssh-ed25519
# CA key ssh-ed25519 SHA256:f4o3Bp...
serial: 3007
I would expect the revoked certificate to show up in this list, too.
Note that in my setup, the SSH daemon correctly denies login with the
revoked certificate. It seems that just the KRL/CRL content listing is
affected.
--
Y...