From 3447694c2bc71d034bb3f510703c2a4bd86a7d15 Mon Sep 17 00:00:00 2001 From: Oswald Buddenhagen Date: Sun, 10 Apr 2011 13:28:48 +0200 Subject: [PATCH] security fix: failure to load the certificate file is *not* OK ... --- src/socket.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/socket.c b/src/socket.c index 0e0d2fa..5b81792 100644 --- a/src/socket.c +++ b/src/socket.c @@ -147,7 +147,7 @@ verify_cert( const server_conf_t *conf, Socket_t *sock ) if (!(fp = fopen( conf->cert_file, "rt" ))) { error( "Unable to load CertificateFile '%s': %s\n", conf->cert_file, strerror( errno ) ); - return 0; + return -1; } err = -1; for (lcert = 0; READ_X509_KEY( fp, &lcert ); )