diff options
| author | Bob Beck <beck@cvs.openbsd.org> | 2017-01-19 07:01:38 +0000 |
|---|---|---|
| committer | Bob Beck <beck@cvs.openbsd.org> | 2017-01-19 07:01:38 +0000 |
| commit | 3add49b6225e25235fc18772f10b3627d14b8c84 (patch) | |
| tree | d05326ce6a4248de8c1baa7f4e6c12ef15fec76d /usr.bin | |
| parent | 70a944384fb0e2277bb93c1a4274ecb8ff433c4b (diff) | |
fix openssl ocsp to not report sucess when the ocsp responder rejects us
ok deraadt@ krw@
Diffstat (limited to 'usr.bin')
| -rw-r--r-- | usr.bin/openssl/ocsp.c | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/usr.bin/openssl/ocsp.c b/usr.bin/openssl/ocsp.c index 948c4261e25..5b5108b3902 100644 --- a/usr.bin/openssl/ocsp.c +++ b/usr.bin/openssl/ocsp.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ocsp.c,v 1.8 2016/04/26 09:37:59 semarie Exp $ */ +/* $OpenBSD: ocsp.c,v 1.9 2017/01/19 07:01:37 beck Exp $ */ /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL * project 2000. */ @@ -664,11 +664,11 @@ done_resp: i = OCSP_response_status(resp); if (i != OCSP_RESPONSE_STATUS_SUCCESSFUL) { - BIO_printf(out, "Responder Error: %s (%d)\n", + BIO_printf(bio_err, "Responder Error: %s (%d)\n", OCSP_response_status_str(i), i); if (ignore_err) goto redo_accept; - ret = 0; + ret = 1; goto end; } if (resp_text) |