|
|
|
|
|
|
by kroeckx
3337 days ago
|
|
|
I think there is a misunderstand of what the existing safety net is about. There are 2 error states: did the verification fail and should the connection be aborted. The safety net makes sure that if a function (the callback) says the connection must be aborted but didn't set the verification error, that it sets an unknown verification error. Note that the callback is external code. The new "safety net" that libressl added said that if the connection doesn't need to be aborted there was no verification error. |
|
|