[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: tls error messages

To: Ralf Haferkamp <rhafer@suse.de>
Subject: Re: tls error messages
From: Howard Chu <hyc@symas.com>
Date: Wed, 30 Sep 2009 03:10:32 -0700
Cc: openldap-devel@openldap.org
In-reply-to: <200909301136.38547.rhafer@suse.de>
References: <200909301136.38547.rhafer@suse.de>
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; rv:1.9.1b5pre) Gecko/20090909 SeaMonkey/2.0a1pre Firefox/3.0.3

Ralf Haferkamp wrote:

Hi,

In case of certificate verification failures I'd like to include the
verification error message ("certificate has expired", "unable to get issuer
certificate", ...) in the diagnostic errormessage.
For that I need pass the tls_session* as an extra argument to the
TI_session_errmsg functions (for openssl I need the SSL* handle to get the
verification error). Does anyone see a problem with this?


No problem, that's a completely internal API, can change as needed.

--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

References:
- tls error messages
  - From: Ralf Haferkamp <rhafer@suse.de>

Prev by Date: Re: RE24 call for testing
Next by Date: Re: RE24 call for testing
Index(es):
- Chronological
- Thread