Make the necessary changes to work with the recent "ex_data" overhaul.

See the commit log message for that for more information. NB: X509_STORE_CTX's use of "ex_data" support was actually misimplemented (initialisation by "memset" won't/can't/doesn't work). This fixes that but requires that X509_STORE_CTX_init() be able to handle errors - so its prototype has been changed to return 'int' rather than 'void'. All uses of that function throughout the source code have been tracked down and adjusted.
author: Geoff Thorpe <geoff@openssl.org> 2001-09-01 20:02:13 +0000
committer: Geoff Thorpe <geoff@openssl.org> 2001-09-01 20:02:13 +0000
commit: 79aa04ef27f69a1149d4d0e72d2d2953b6241ef0 (patch)
tree: 28eb317ea6bcd7f391cffe2fe694e92224ce1ff8 /ssl/s3_both.c
parent: 3a0799977bcb154d044828e96a25a01eb478de51 (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/ssl/s3_both.c b/ssl/s3_both.c
index b4d1b8445d..68ddb143da 100644
--- a/ssl/s3_both.c
+++ b/ssl/s3_both.c
@@ -272,7 +272,11 @@ unsigned long ssl3_output_cert_chain(SSL *s, X509 *x)
 		}
 	if (x != NULL)
 		{
-		X509_STORE_CTX_init(&xs_ctx,s->ctx->cert_store,NULL,NULL);
+		if(!X509_STORE_CTX_init(&xs_ctx,s->ctx->cert_store,NULL,NULL))
+			{
+			SSLerr(SSL_F_SSL3_OUTPUT_CERT_CHAIN,ERR_R_X509_LIB);
+			return(0);
+			}
 
 		for (;;)
 			{
author	Geoff Thorpe <geoff@openssl.org>	2001-09-01 20:02:13 +0000
committer	Geoff Thorpe <geoff@openssl.org>	2001-09-01 20:02:13 +0000
commit	79aa04ef27f69a1149d4d0e72d2d2953b6241ef0 (patch)
tree	28eb317ea6bcd7f391cffe2fe694e92224ce1ff8 /ssl/s3_both.c
parent	3a0799977bcb154d044828e96a25a01eb478de51 (diff)