From 3ef2d6bb7f6b6843937ccfd933e93e31a4139404 Mon Sep 17 00:00:00 2001
From: Fabian Keil <fk@fabiankeil.de>
Date: Wed, 23 Sep 2020 11:19:32 +0200
Subject: [PATCH] ssl_certificate_is_invalid(): If the validity check fails,
 consider the certificate invalid

---
 openssl.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/openssl.c b/openssl.c
index 7e4e3d8a..d911aff9 100644
--- a/openssl.c
+++ b/openssl.c
@@ -1578,6 +1578,7 @@ static int ssl_certificate_is_invalid(const char *cert_file)
    {
       log_ssl_errors(LOG_LEVEL_ERROR,
          "Error checking certificate %s validity", cert_file);
+      ret = -1;
    }
 
    X509_free(cert);
-- 
2.39.2