mirror of
https://github.com/yuzu-emu/mbedtls
synced 2024-11-25 01:58:12 +00:00
Update doc of ssl_set_authmode()
This commit is contained in:
parent
bb4dd37044
commit
e2ce2112ac
1 changed files with 6 additions and 0 deletions
|
@ -869,6 +869,12 @@ void ssl_set_endpoint( ssl_context *ssl, int endpoint );
|
|||
*
|
||||
* SSL_VERIFY_REQUIRED: peer *must* present a valid certificate,
|
||||
* handshake is aborted if verification failed.
|
||||
*
|
||||
* \note On client, SSL_VERIFY_REQUIRED is the recommended mode.
|
||||
* With SSL_VERIFY_OPTIONAL, the user needs to call ssl_get_verify_result() at
|
||||
* the right time(s), which may not be obvious, while REQUIRED always perform
|
||||
* the verification as soon as possible. For example, REQUIRED was protecting
|
||||
* against the "triple handshake" attack even before it was found.
|
||||
*/
|
||||
void ssl_set_authmode( ssl_context *ssl, int authmode );
|
||||
|
||||
|
|
Loading…
Reference in a new issue