Only return VERIFY_FAILED from a single point Everything else is a fatal error. Also improve documentation about that for the vrfy callback.

commit: 31458a18788b0cf0b722acda9bb2f2fe13a3fb32 [log] [tgz]
author: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Mon Jun 26 10:11:49 2017 +0200
committer: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Thu Jul 06 11:58:41 2017 +0200
tree: ef4d4387ef4fec4e9318c6af4bdfa3abd5880574
parent: d15795acd5074e0b44e71f7ede8bdfe1b48591fc [diff] [blame]
diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index 51c1c60..cc00070 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h

@@ -1052,7 +1052,7 @@
  *
  *                 If set, the verify callback is called for each
  *                 certificate in the chain. For implementation
- *                 information, please see \c x509parse_verify()
+ *                 information, please see \c mbedtls_x509_crt_verify()
  *
  * \param conf     SSL configuration
  * \param f_vrfy   verification function
commit	31458a18788b0cf0b722acda9bb2f2fe13a3fb32	[log] [tgz]
author	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Mon Jun 26 10:11:49 2017 +0200
committer	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Thu Jul 06 11:58:41 2017 +0200
tree	ef4d4387ef4fec4e9318c6af4bdfa3abd5880574
parent	d15795acd5074e0b44e71f7ede8bdfe1b48591fc [diff] [blame]