Warmcat homepage andy@warmcat.com
libwebsockets
{"schema":"libjg2-1", "vpath":"/git/", "avatar":"/git/avatar/", "alang":"", "gen_ut":1756497626, "reponame":"openssl", "desc":"OpenSSL", "owner": { "name": "Andy Green", "email": "andy@warmcat.com", "md5": "c50933ca2aa61e0fe2c43d46bb6b59cb" },"url":"https://warmcat.com/repo/openssl", "f":3, "items": [ {"schema":"libjg2-1", "cid":"05dc47b09f40ab1badf19849d9541ba6", "commit": {"type":"commit", "time": 1463598924, "time_ofs": 18446744073709551376, "oid_tree": { "oid": "15804b9167d6128b153b07670d8c6f5709d6b896", "alias": []}, "oid":{ "oid": "5fba3912cc770bb035accb390653bda1a795f39e", "alias": []}, "msg": "Clarify negative return from X509_verify_cert()", "sig_commit": { "git_time": { "time": 1463598924, "offset": -240 }, "name": "Viktor Dukhovni", "email": "openssl-users@dukhovni.org", "md5": "2c3e16c80b811b59e707226a9aeb9d84" }, "sig_author": { "git_time": { "time": 1463449083, "offset": -240 }, "name": "Viktor Dukhovni", "email": "openssl-users@dukhovni.org", "md5": "2c3e16c80b811b59e707226a9aeb9d84" }}, "body": "Clarify negative return from X509_verify_cert()\n\nReviewed-by: Richard Levitte \u003clevitte@openssl.org\u003e\n" , "diff": "diff --git a/doc/crypto/X509_verify_cert.pod b/doc/crypto/X509_verify_cert.pod\nindex a84ef00..6b4ff7e 100644\n--- a/doc/crypto/X509_verify_cert.pod\n+++ b/doc/crypto/X509_verify_cert.pod\n@@ -31,12 +31,13 @@ Applications rarely call this function directly but it is used by\n OpenSSL internally for certificate validation, in both the S/MIME and\n SSL/TLS code.\n \n-The negative return value from X509_verify_cert() can only occur if no\n-certificate is set in B\u003cctx\u003e (due to a programming error); if X509_verify_cert()\n-twice without reinitialising B\u003cctx\u003e in between; or if a retry\n-operation is requested during internal lookups (which never happens with\n-standard lookup methods). It is however recommended that application check\n-for \u003c\u003d 0 return value on error.\n+A negative return value from X509_verify_cert() can occur if it is invoked\n+incurrectly, such as with no certificate set in B\u003cctx\u003e, or when it is called\n+twice in succession without reinitialising B\u003cctx\u003e for the second call.\n+A negative return value can also happen due to internal resource problems or if\n+a retry operation is requested during internal lookups (which never happens\n+with standard lookup methods).\n+Applications must check for \u003c\u003d 0 return value on error.\n \n \u003dhead1 BUGS\n \n","s":{"c":1756497626,"u": 2615}} ],"g": 3925,"chitpc": 0,"ehitpc": 0,"indexed":0 , "ab": 0, "si": 0, "db":0, "di":0, "sat":0, "lfc": "0000"}