Thanks for the report, I've applied a fix. I've not applied the second part of the patch because then the return variable "ret" is set to the return value of X509_verify_cert() which is intentional.
Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org