nss: do not abort on connection failure

... due to calling SSL_VersionRangeGet() with NULL file descriptor reported-by: upstream tests 305 and 404
author: Kamil Dudka <kdudka@redhat.com> 2014-07-02 17:37:43 +0200
committer: Kamil Dudka <kdudka@redhat.com> 2014-07-02 17:59:03 +0200
commit: 7c21558503cbb10595c345acc7820cb9dc8741d6 (patch)
tree: d202777cc2d1190ffc4f71595b28a39caec0bebb /lib
parent: 46a886cd4880a2b4ab45c856b4695eaf3328431f (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/lib/vtls/nss.c b/lib/vtls/nss.c
index c1eec413a..1e41795f2 100644
--- a/lib/vtls/nss.c
+++ b/lib/vtls/nss.c
@@ -1396,7 +1396,8 @@ static CURLcode nss_fail_connect(struct ssl_connect_data *connssl,
   Curl_llist_destroy(connssl->obj_list, NULL);
   connssl->obj_list = NULL;
 
-  if((SSL_VersionRangeGet(connssl->handle, &sslver) == SECSuccess)
+  if(connssl->handle
+      && (SSL_VersionRangeGet(connssl->handle, &sslver) == SECSuccess)
       && (sslver.min == SSL_LIBRARY_VERSION_3_0)
       && (sslver.max == SSL_LIBRARY_VERSION_TLS_1_0)
       && isTLSIntoleranceError(err)) {
author	Kamil Dudka <kdudka@redhat.com>	2014-07-02 17:37:43 +0200
committer	Kamil Dudka <kdudka@redhat.com>	2014-07-02 17:59:03 +0200
commit	7c21558503cbb10595c345acc7820cb9dc8741d6 (patch)
tree	d202777cc2d1190ffc4f71595b28a39caec0bebb /lib
parent	46a886cd4880a2b4ab45c856b4695eaf3328431f (diff)