Properly handle missing SSL certificate

According to OpenSSL document (https://www.openssl.org/docs/manmaster/ssl/SSL_get_verify_result.html), when using SSL_get_verify_result(), the existence of certificate needs to be checked. However, in current code, it does not. Therefore, certificate existence check is required for correctly handling the exception. Closes #1549
2015-11-20 16:51:08 -05:00 · 2015-11-20 16:51:08 -05:00 · 50463ca832
commit 50463ca832
parent 0826e7d353
1 changed files with 2 additions and 3 deletions
--- a/src/common/server.c
+++ b/src/common/server.c
@ -569,9 +569,8 @@ ssl_do_connect (server * serv)
 							 NULL, 0);
 		} else
 		{
-			g_snprintf (buf, sizeof (buf), " * No Certificate");
-			EMIT_SIGNAL (XP_TE_SSLMESSAGE, serv->server_session, buf, NULL, NULL,
-							 NULL, 0);
+			g_snprintf (buf, sizeof (buf), "No Certificate");
+			goto conn_fail;
 		}

 		chiper_info = _SSL_get_cipher_info (serv->ssl);	/* static buffer */