CVSROOT: /cvs
Module name: src
Changes by: t...@cvs.openbsd.org 2021/04/07 15:48:23
Modified files:
lib/libssl : tls13_lib.c
Log message:
Avoid clobbering the error code when sending an alert
In order to fail gracefully on encountering a self-signed cert, curl looks
at the top-most error on the stack and needs specific SSL_R_ error codes.
This mechanism was broken when the tls13_alert_sent_cb() was added after
people complained about unhelpful unknown errors. Fix this by only setting
the error code from a fatal alert if no error has been set previously.
Issue reported by Christopher Reid
ok jsing
