]> git.ipfire.org Git - thirdparty/curl.git/commitdiff
projects / thirdparty / curl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: a8a1dd8)
sectransp: bail out if SSLSetPeerDomainName fails
authorHarry Sintonen <sintonen@iki.fi>
Fri, 6 May 2022 14:25:19 +0000 (16:25 +0200)
committerDaniel Stenberg <daniel@haxx.se>
Fri, 6 May 2022 14:25:20 +0000 (16:25 +0200)
Before the code would just warn about SSLSetPeerDomainName() errors.

Closes #8798

lib/vtls/sectransp.c patch | blob | blame | history

diff --git a/lib/vtls/sectransp.c b/lib/vtls/sectransp.c
index 8ee8fe997fa51e0483829a225744986093372ba6..2e57d837852fbd7e795b4b8cad714316483972c1 100644 (file)
--- a/lib/vtls/sectransp.c
+++ b/lib/vtls/sectransp.c
@@ -2045,8 +2045,9 @@ static CURLcode sectransp_connect_step1(struct Curl_easy *data,
     err = SSLSetPeerDomainName(backend->ssl_ctx, snihost, snilen);
 
     if(err != noErr) {
-      infof(data, "WARNING: SSL: SSLSetPeerDomainName() failed: OSStatus %d",
+      failf(data, "SSL: SSLSetPeerDomainName() failed: OSStatus %d",
             err);
+      return CURLE_SSL_CONNECT_ERROR;
     }
 
     if((Curl_inet_pton(AF_INET, hostname, &addr))
Mirror of https://github.com/curl/curl.git