yuzu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2025-05-12 23:42:14 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update doc of ssl_set_authmode()

Browse source
This commit is contained in:
Manuel Pégourié-Gonnard 2014-03-11 10:50:48 +01:00 committed by Paul Bakker
parent 588b66f152
commit 8a56d3044d
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
include/polarssl/ssl.h
View file

@ -620,6 +620,12 @@ void ssl_set_endpoint( ssl_context *ssl, int endpoint );
* *
* SSL_VERIFY_REQUIRED: peer *must* present a valid certificate, * SSL_VERIFY_REQUIRED: peer *must* present a valid certificate,
* handshake is aborted if verification failed. * handshake is aborted if verification failed.
*
* \note On client, SSL_VERIFY_REQUIRED is the recommended mode.
* With SSL_VERIFY_OPTIONAL, the user needs to call ssl_get_verify_result() at
* the right time(s), which may not be obvious, while REQUIRED always perform
* the verification as soon as possible. For example, REQUIRED was protecting
* against the "triple handshake" attack even before it was found.
*/ */
void ssl_set_authmode( ssl_context *ssl, int authmode ); void ssl_set_authmode( ssl_context *ssl, int authmode );