CVSROOT: /cvs Module name: src Changes by: t...@cvs.openbsd.org 2021/04/07 15:48:23
Modified files: lib/libssl : tls13_lib.c Log message: Avoid clobbering the error code when sending an alert In order to fail gracefully on encountering a self-signed cert, curl looks at the top-most error on the stack and needs specific SSL_R_ error codes. This mechanism was broken when the tls13_alert_sent_cb() was added after people complained about unhelpful unknown errors. Fix this by only setting the error code from a fatal alert if no error has been set previously. Issue reported by Christopher Reid ok jsing