diff options
| author | Daniel Stenberg <daniel@haxx.se> | 2017-09-04 00:02:29 +0200 |
|---|---|---|
| committer | Daniel Stenberg <daniel@haxx.se> | 2017-09-04 11:48:38 +0200 |
| commit | 202c1cc22fc3b83dff93b7181f8eb3cc1a8e4a3f (patch) | |
| tree | 6a9feaa7ce8982db885d6f381abf011f80abb9f0 | |
| parent | 4ed618c023445d5d174e964055b1373e434d5e4f (diff) | |
| download | curl-202c1cc22fc3b83dff93b7181f8eb3cc1a8e4a3f.tar.gz | |
schannel: return CURLE_SSL_CACERT on failed verification
... not *CACERT_BADFILE as it isn't really because of a bad file.
Bug: https://curl.haxx.se/mail/lib-2017-09/0002.html
Closes #1858
| -rw-r--r-- | lib/vtls/schannel.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/vtls/schannel.c b/lib/vtls/schannel.c index 473bebe21..64d180dc4 100644 --- a/lib/vtls/schannel.c +++ b/lib/vtls/schannel.c @@ -714,7 +714,7 @@ schannel_connect_step2(struct connectdata *conn, int sockindex) failf(data, "schannel: next InitializeSecurityContext failed: %s", Curl_sspi_strerror(conn, sspi_status)); return sspi_status == SEC_E_UNTRUSTED_ROOT ? - CURLE_SSL_CACERT_BADFILE : CURLE_SSL_CONNECT_ERROR; + CURLE_SSL_CACERT : CURLE_SSL_CONNECT_ERROR; } /* check if there was additional remaining encrypted data */ |