Add tests for mbedtls_set_hs_ca_chain()

commit: 6ea831dcf4b863b2c5ab7abd30e650deb9a1c522 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Mon Jun 22 16:50:52 2015 +0200
committer: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Mon Jun 22 17:30:18 2015 +0200
tree: 548ece838046c42f603dc20d5e98ebc26547cb9e
parent: c948a798bd39c36443c1cc06a301b8f1310943e1 [diff] [blame]
diff --git a/programs/ssl/ssl_server2.c b/programs/ssl/ssl_server2.c
index 12d4f1f..6ac2406 100644
--- a/programs/ssl/ssl_server2.c
+++ b/programs/ssl/ssl_server2.c

@@ -1941,6 +1941,19 @@
     else if( ret != 0 )
     {
         mbedtls_printf( " failed\n  ! mbedtls_ssl_handshake returned -0x%x\n\n", -ret );
+
+#if defined(MBEDTLS_X509_CRT_PARSE_C)
+        if( ret == MBEDTLS_ERR_X509_CERT_VERIFY_FAILED )
+        {
+            char vrfy_buf[512];
+            uint32_t flags = mbedtls_ssl_get_verify_result( &ssl );
+
+            mbedtls_x509_crt_verify_info( vrfy_buf, sizeof( vrfy_buf ), "  ! ", flags );
+
+            mbedtls_printf( "%s\n", vrfy_buf );
+        }
+#endif
+
         goto reset;
     }
     else /* ret == 0 */
commit	6ea831dcf4b863b2c5ab7abd30e650deb9a1c522	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Mon Jun 22 16:50:52 2015 +0200
committer	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Mon Jun 22 17:30:18 2015 +0200
tree	548ece838046c42f603dc20d5e98ebc26547cb9e
parent	c948a798bd39c36443c1cc06a301b8f1310943e1 [diff] [blame]