Clarify wording of verify_callback() behaviour.

author Lutz Jänicke <jaenicke@openssl.org>

Thu, 26 Jun 2003 14:03:33 +0000 (14:03 +0000)

committer Lutz Jänicke <jaenicke@openssl.org>

Thu, 26 Jun 2003 14:03:33 +0000 (14:03 +0000)
author Lutz Jänicke <jaenicke@openssl.org>
Thu, 26 Jun 2003 14:03:33 +0000 (14:03 +0000)
committer Lutz Jänicke <jaenicke@openssl.org>
Thu, 26 Jun 2003 14:03:33 +0000 (14:03 +0000)
diff --git a/doc/ssl/SSL_CTX_set_verify.pod b/doc/ssl/SSL_CTX_set_verify.pod

index d15b2a3a1a5bc9f405e69040bf41e615c6df67e2..ca8d81b82c818d08f209c73a98ebd7def83ac257 100644 (file)
--- a/doc/ssl/SSL_CTX_set_verify.pod
+++ b/doc/ssl/SSL_CTX_set_verify.pod
@@ -135,9 +135,9 @@ process is immediately stopped with "verification failed" state. If
  SSL_VERIFY_PEER is set, a verification failure alert is sent to the peer and
  the TLS/SSL handshake is terminated. If B<verify_callback> returns 1,
  the verification process is continued. If B<verify_callback> always returns
-1, the TLS/SSL handshake will never be terminated because of this application
-experiencing a verification failure. The calling process can however
-retrieve the error code of the last verification error using
+1, the TLS/SSL handshake will not be terminated with respect to verification
+failures and the connection will be established. The calling process can
+however retrieve the error code of the last verification error using
  L<SSL_get_verify_result(3)|SSL_get_verify_result(3)> or by maintaining its
  own error storage managed by B<verify_callback>.
author	Lutz Jänicke <jaenicke@openssl.org>
	Thu, 26 Jun 2003 14:03:33 +0000 (14:03 +0000)
committer	Lutz Jänicke <jaenicke@openssl.org>
	Thu, 26 Jun 2003 14:03:33 +0000 (14:03 +0000)