CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2016/12/26 09:20:58
Modified files:
lib/libtls : tls.c tls_client.c
Log message:
Hook up a certificate verify callback so that we can set user friendly
error messages, instead of libssl error strings. This gives us messages
like:
certificate verification failed: certificate has expired
Instead of:
14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
This also lets us always enable peer verification since the no verification
case is now handled via the callback.
Tested by tedu@
ok beck@
