diff options
| author | Christophe Fergeau <cfergeau@redhat.com> | 2013-09-20 17:07:34 +0200 |
|---|---|---|
| committer | Christophe Fergeau <cfergeau@redhat.com> | 2013-10-11 10:21:54 +0200 |
| commit | b34169feb6a713ee25d1ecded45030dcb6443571 (patch) | |
| tree | cf3add675237a9d9a4f3f032eab5c905fe6485f0 | |
| parent | 7e8ba10779a3fb11d587e8a59fe389acd2412dd0 (diff) | |
ssl: Improve error message in cert chain verification
It contains the same information as before, but should be more readable.
| -rw-r--r-- | common/ssl_verify.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/common/ssl_verify.c b/common/ssl_verify.c index e10ed52..d4b89f0 100644 --- a/common/ssl_verify.c +++ b/common/ssl_verify.c @@ -424,8 +424,8 @@ static int openssl_verify(int preverify_ok, X509_STORE_CTX *ctx) err = X509_STORE_CTX_get_error(ctx); if (depth > 0) { if (!preverify_ok) { - spice_warning("openssl verify:num=%d:%s:depth=%d:%s", err, - X509_verify_cert_error_string(err), depth, buf); + spice_warning("Error in certificate chain verification: %s (num=%d:depth%d:%s)", + X509_verify_cert_error_string(err), err, depth, buf); v->all_preverify_ok = 0; /* if certificate verification failed, we can still authorize the server */ |