Allow specific libtls hostname validation errors to propagate. - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	bcook <>	2014-12-07 15:00:32 +0000
committer	bcook <>	2014-12-07 15:00:32 +0000
commit	a761ebff2cb2a2b78b88a343ed309d18ed93993e (patch)
tree	094ce4813a37514a96f893ee676a60374f36f28b /src/usr.bin/openssl/engine.c
parent	0eaa29b6532ab032e411dcff4650b06dc3747dd0 (diff)
download	openbsd-a761ebff2cb2a2b78b88a343ed309d18ed93993e.tar.gz openbsd-a761ebff2cb2a2b78b88a343ed309d18ed93993e.tar.bz2 openbsd-a761ebff2cb2a2b78b88a343ed309d18ed93993e.zip

Allow specific libtls hostname validation errors to propagate.

Remove direct calls to printf from the tls_check_hostname() path. This allows NUL byte error messages to bubble up to the caller, to be logged in a program-appropriate way. It also removes non-portable calls to getprogname(). The semantics of tls_error() are changed slightly: the last error message is not necessarily preserved between subsequent calls into the library. When the previous call to libtls succeeds, client programs should treat the return value of tls_error() as undefined. ok tedu@

Diffstat (limited to 'src/usr.bin/openssl/engine.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: