Fix from review

This commit is contained in:
Eric Blankenhorn
2026-04-14 07:58:43 -05:00
parent 2b503dae54
commit c873f3f77d
+4
View File
@@ -765,6 +765,10 @@ int wolfSSL_X509_verify_cert(WOLFSSL_X509_STORE_CTX* ctx)
X509StoreCertIsTrusted(ctx->store, ctx->current_cert,
origTrustedSk)) {
wolfSSL_sk_X509_push(ctx->chain, ctx->current_cert);
/* Clear error set by the failed X509StoreVerifyCert
* attempt; the partial-chain fallback accepted the
* chain at a caller-trusted certificate. */
ctx->error = 0;
ret = WOLFSSL_SUCCESS;
} else {
X509VerifyCertSetupRetry(ctx, certs, failedCerts,