vtls_openssl: improve PKCS#12 load failure error message

diff --git a/lib/vtls/openssl.c b/lib/vtls/openssl.c
index b4fd38c13d5a387baceca7bc32e23f351fb84d9a..e072026931fb8ad4bc4dde0ecdab973a61662c24 100644 (file)
--- a/lib/vtls/openssl.c
+++ b/lib/vtls/openssl.c
@@ -514,7 +514,9 @@ int cert_stuff(struct connectdata *conn,
       PKCS12_free(p12);
 
       if(SSL_CTX_use_certificate(ctx, x509) != 1) {
-        failf(data, SSL_CLIENT_CERT_ERR);
+        failf(data,
+              "could not load PKCS12 client certificate, OpenSSL error %s",
+              ERR_error_string(ERR_get_error(), NULL) );
         goto fail;
       }