nss: do not fail if a CRL is already cached

This fixes a copy-paste mistake from commit 2968f957.

diff --git a/RELEASE-NOTES b/RELEASE-NOTES
index 827876137467ff9f3940d91eaec822ae57a4317c..c62ecb662c6072f0dedd5b22d8e7bd07df25bb74 100644 (file)
--- a/RELEASE-NOTES
+++ b/RELEASE-NOTES
@@ -22,6 +22,7 @@ This release includes the following bugfixes:
  o configure: allow --with-ca-path with PolarSSL too
  o HTTP/2: Fix busy loop when EOF is encountered
  o CURLOPT_CAPATH: return failure if set without backend support
+ o nss: do not fail if a CRL is already cached
 
 This release includes the following known bugs:
 

diff --git a/lib/vtls/nss.c b/lib/vtls/nss.c
index 83b3e3237df70e5774eadc75c8f58384e93c2b3f..c84938fa4eb335ba0d049ee785af766d6ae3ea69 100644 (file)
--- a/lib/vtls/nss.c
+++ b/lib/vtls/nss.c
@@ -448,7 +448,7 @@ static CURLcode nss_cache_crl(SECItem *crl_der)
     /* CRL already cached */
     SEC_DestroyCrl(crl);
     SECITEM_FreeItem(crl_der, PR_TRUE);
-    return CURLE_SSL_CRL_BADFILE;
+    return CURLE_OK;
   }
 
   /* acquire lock before call of CERT_CacheCRL() and accessing nss_crl_list */