From: Fabian Keil <fk@fabiankeil.de>
Date: Wed, 26 Feb 2020 13:28:18 +0000 (+0100)
Subject: ssl_send_certificate_error(): Be more precise
X-Git-Tag: v_3_0_29~470
X-Git-Url: http://www.privoxy.org/gitweb/@default-cgi@/static/user-manual/@default-cgi@show-status?a=commitdiff_plain;h=caa55bc7914068ff23bdca89c7bbf59ea72811fb;p=privoxy.git

ssl_send_certificate_error(): Be more precise

An invalid certificate is only one of the reasons
why the certificate verification may fail.

Sponsored by: Robert Klemme
---

diff --git a/ssl.c b/ssl.c
index c1a06613..54d36a0e 100644
--- a/ssl.c
+++ b/ssl.c
@@ -1689,7 +1689,7 @@ extern void ssl_send_certificate_error(struct client_state *csp)
       "HTTP/1.1 200 OK\r\n"
       "Content-Type: text/html\r\n"
       "Connection: close\r\n\r\n"
-      "<html><body><h1>Invalid server certificate</h1><p>Reason: ";
+      "<html><body><h1>Server certificate verification failed</h1><p>Reason: ";
    const char message_end[] = "</body></html>\r\n\r\n";
    char reason[INVALID_CERT_INFO_BUF_SIZE];
    memset(reason, 0, sizeof(reason));