generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Clarify wording of verify_callback() behaviour.

Browse Source
This commit is contained in:
Lutz Jänicke 2003-06-26 14:03:03 +00:00
parent aa5ae4841e
commit 9d19fbc4fc
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
doc/ssl/SSL_CTX_set_verify.pod
View File

@ -135,9 +135,9 @@ process is immediately stopped with "verification failed" state. If
SSL_VERIFY_PEER is set, a verification failure alert is sent to the peer and SSL_VERIFY_PEER is set, a verification failure alert is sent to the peer and
the TLS/SSL handshake is terminated. If B<verify_callback> returns 1, the TLS/SSL handshake is terminated. If B<verify_callback> returns 1,
the verification process is continued. If B<verify_callback> always returns the verification process is continued. If B<verify_callback> always returns
1, the TLS/SSL handshake will never be terminated because of this application 1, the TLS/SSL handshake will not be terminated with respect to verification
experiencing a verification failure. The calling process can however failures and the connection will be established. The calling process can
retrieve the error code of the last verification error using however retrieve the error code of the last verification error using
L<SSL_get_verify_result(3)|SSL_get_verify_result(3)> or by maintaining its L<SSL_get_verify_result(3)|SSL_get_verify_result(3)> or by maintaining its
own error storage managed by B<verify_callback>. own error storage managed by B<verify_callback>.