Call tls_log_errors at a more appropriate location; we can remove the other calls in tor_tls_verify once we are sure they never happen.

svn:r1709
This commit is contained in:
Nick Mathewson 2004-04-26 03:09:17 +00:00
parent 75dc76eb3e
commit 0355d29e12

View File

@ -580,6 +580,7 @@ tor_tls_verify(tor_tls *tls, crypto_pk_env_t *identity_key)
if (!(id_pkey = _crypto_pk_env_get_evp_pkey(identity_key,0)) || if (!(id_pkey = _crypto_pk_env_get_evp_pkey(identity_key,0)) ||
X509_verify(cert, id_pkey) <= 0) { X509_verify(cert, id_pkey) <= 0) {
log_fn(LOG_WARN,"X509_verify on cert and pkey returned <= 0"); log_fn(LOG_WARN,"X509_verify on cert and pkey returned <= 0");
tls_log_errors(LOG_WARN,"verifying certificate");
goto done; goto done;
} }