From 2fceff5ba35f355bb4ace4172c21236746c7260f Mon Sep 17 00:00:00 2001 From: "Dr. Stephen Henson" Date: Thu, 29 Nov 2012 19:15:14 +0000 Subject: [PATCH] PR: 2803 Submitted by: jean-etienne.schwartz@bull.net In OCSP_basic_varify return an error if X509_STORE_CTX_init fails. --- crypto/ocsp/ocsp_vfy.c | 1 + 1 file changed, 1 insertion(+) diff --git a/crypto/ocsp/ocsp_vfy.c b/crypto/ocsp/ocsp_vfy.c index 415d67e61c..8a5e788d96 100644 --- a/crypto/ocsp/ocsp_vfy.c +++ b/crypto/ocsp/ocsp_vfy.c @@ -108,6 +108,7 @@ int OCSP_basic_verify(OCSP_BASICRESP *bs, STACK_OF(X509) *certs, init_res = X509_STORE_CTX_init(&ctx, st, signer, bs->certs); if(!init_res) { + ret = -1; OCSPerr(OCSP_F_OCSP_BASIC_VERIFY,ERR_R_X509_LIB); goto end; } -- 2.40.0