1From 0677924c6ec7e0d68964553fb760f6d407242c54 Mon Sep 17 00:00:00 2001 2From: Daniel Stenberg <daniel@haxx.se> 3Date: Tue, 8 Mar 2022 13:38:13 +0100 4Subject: [PATCH] openssl: fix CN check error code 5 6Due to a missing 'else' this returns error too easily. 7 8Regressed in: d15692ebb 9 10Reported-by: Kristoffer Gleditsch 11Fixes #8559 12Closes #8560 13 14Upstream-Status: Backport [https://github.com/curl/curl/commit/911714d617c106ed5d553bf003e34ec94ab6a136] 15 16Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> 17 18--- 19 lib/vtls/openssl.c | 3 ++- 20 1 file changed, 2 insertions(+), 1 deletion(-) 21 22diff --git a/lib/vtls/openssl.c b/lib/vtls/openssl.c 23index 616a510..1bafe96 100644 24--- a/lib/vtls/openssl.c 25+++ b/lib/vtls/openssl.c 26@@ -1808,7 +1808,8 @@ CURLcode Curl_ossl_verifyhost(struct Curl_easy *data, struct connectdata *conn, 27 memcpy(peer_CN, ASN1_STRING_get0_data(tmp), peerlen); 28 peer_CN[peerlen] = '\0'; 29 } 30- result = CURLE_OUT_OF_MEMORY; 31+ else 32+ result = CURLE_OUT_OF_MEMORY; 33 } 34 } 35 else /* not a UTF8 name */ 36-- 372.34.1 38 39