Blame SOURCES/openssl-1.0.2a-x509.patch

cfec1a
diff -up openssl-1.0.2a/crypto/x509/by_file.c.x509 openssl-1.0.2a/crypto/x509/by_file.c
cfec1a
--- openssl-1.0.2a/crypto/x509/by_file.c.x509	2015-04-09 18:16:29.365456157 +0200
cfec1a
+++ openssl-1.0.2a/crypto/x509/by_file.c	2015-04-09 18:16:26.398387618 +0200
cfec1a
@@ -152,9 +152,12 @@ int X509_load_cert_file(X509_LOOKUP *ctx
cfec1a
                 }
cfec1a
             }
cfec1a
             i = X509_STORE_add_cert(ctx->store_ctx, x);
cfec1a
-            if (!i)
cfec1a
-                goto err;
cfec1a
-            count++;
cfec1a
+            /* ignore any problems with current certificate 
cfec1a
+               and continue with the next one */
cfec1a
+            if (i)
cfec1a
+                count++;
cfec1a
+            else
cfec1a
+                ERR_clear_error();
cfec1a
             X509_free(x);
cfec1a
             x = NULL;
cfec1a
         }
cfec1a
@@ -167,7 +170,7 @@ int X509_load_cert_file(X509_LOOKUP *ctx
cfec1a
         }
cfec1a
         i = X509_STORE_add_cert(ctx->store_ctx, x);
cfec1a
         if (!i)
cfec1a
-            goto err;
cfec1a
+            ERR_clear_error();
cfec1a
         ret = i;
cfec1a
     } else {
cfec1a
         X509err(X509_F_X509_LOAD_CERT_FILE, X509_R_BAD_X509_FILETYPE);