diff options
| author |   tb <tb@openbsd.org> | 2021-03-23 20:04:29 +0000 |
|---|---|---|
| committer | tb <tb@openbsd.org> | 2021-03-23 20:04:29 +0000 |
| commit | cf2dac91cc97e2d3dcb0640a60cd9b6d5ef576b0 (patch) | |
| tree | 02c6cab8e8c59989ec05449bbb7a341dbf6ddb0b | |
| parent | change pfIfDescr and pfLogIfName from plain OCTET STRING (which has no (diff) | |
| download | wireguard-openbsd-cf2dac91cc97e2d3dcb0640a60cd9b6d5ef576b0.tar.xz wireguard-openbsd-cf2dac91cc97e2d3dcb0640a60cd9b6d5ef576b0.zip | |
OCSP_basic_verify() doesn't set errno, so use tls_set_errorx()
ok inoguchi
| -rw-r--r-- | lib/libtls/tls_ocsp.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/lib/libtls/tls_ocsp.c b/lib/libtls/tls_ocsp.c index 32c372ed59e..f00e6bc84b2 100644 --- a/lib/libtls/tls_ocsp.c +++ b/lib/libtls/tls_ocsp.c @@ -1,4 +1,4 @@ -/* $OpenBSD: tls_ocsp.c,v 1.19 2019/12/03 14:56:42 tb Exp $ */ +/* $OpenBSD: tls_ocsp.c,v 1.20 2021/03/23 20:04:29 tb Exp $ */ /* * Copyright (c) 2015 Marko Kreen <markokr@gmail.com> * Copyright (c) 2016 Bob Beck <beck@openbsd.org> @@ -218,7 +218,7 @@ tls_ocsp_verify_response(struct tls *ctx, OCSP_RESPONSE *resp) /* now verify */ if (OCSP_basic_verify(br, ctx->ocsp->extra_certs, SSL_CTX_get_cert_store(ctx->ssl_ctx), flags) != 1) { - tls_set_error(ctx, "ocsp verify failed"); + tls_set_errorx(ctx, "ocsp verify failed"); goto err; } |