* mod_ssl: Fix spurious errors when loading certificate chain

  2.2.x uses a home grown version of SSL_CTX_use_certificate_chain_file
  called SSL_CTX_use_certificate_chain() which also needs the
  ERR_clear_error() call.
  trunk patch: N/A, but similar to https://svn.apache.org/r1588427

PR: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=794383
Submitted by: sf
Reviewed by: sf, rpluem, ylavic

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@1700409 13f79535-47bb-0310-9956-ffa450edef68

diff --git a/modules/ssl/ssl_engine_init.c b/modules/ssl/ssl_engine_init.c
index add859d3c5d6c788cae2ddb74e3f10c0f79f0119..b2069b45ecc1c15d8af67b08c2d4f181256144b7 100644 (file)
--- a/modules/ssl/ssl_engine_init.c
+++ b/modules/ssl/ssl_engine_init.c
@@ -689,6 +689,7 @@ static void ssl_init_ctx_cert_chain(server_rec *s,
         }
     }
 
+    ERR_clear_error();
     n = SSL_CTX_use_certificate_chain(mctx->ssl_ctx,
                                       (char *)chain,
                                       skip_first, NULL);