Mercurial > dovecot > original-hg > dovecot-2.2

changeset 16782:ac832f051b49

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
lib-ssl-iostream: Give better error message if CA settings are missing.
author Timo Sirainen <tss@iki.fi>
date Fri, 20 Sep 2013 04:01:10 +0300
parents 98702a45784c
children 17aaab5511f2
files src/lib-ssl-iostream/iostream-openssl-context.c
diffstat 1 files changed, 3 insertions(+), 1 deletions(-) [+]
line wrap: on
line diff
--- a/src/lib-ssl-iostream/iostream-openssl-context.c	Fri Sep 20 03:54:31 2013 +0300
+++ b/src/lib-ssl-iostream/iostream-openssl-context.c	Fri Sep 20 04:01:10 2013 +0300
@@ -349,7 +349,9 @@
 	}
 
 	if (!have_ca) {
-		*error_r = "Can't verify remote certs without CA";
+		*error_r = !ctx->client_ctx ?
+			"Can't verify remote client certs without CA (ssl_ca setting)" :
+			"Can't verify remote server certs without trusted CAs (ssl_client_ca_* settings)";
 		return -1;
 	}
 	return 0;