Write to CURLOPT_ERRORBUFFER information about mismatch alternative certificate subject names.
Signed-off-by: Andrej E Baranov <[email protected]> --- lib/ssluse.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/lib/ssluse.c b/lib/ssluse.c index 9974ac8..ef0c882 100644 --- a/lib/ssluse.c +++ b/lib/ssluse.c @@ -1192,6 +1192,8 @@ static CURLcode verifyhost(struct connectdata *conn, /* an alternative name field existed, but didn't match and then we MUST fail */ infof(data, "\t subjectAltName does not match %s\n", conn->host.dispname); + failf(data, "SSL: alternative certificate subject names does not match " + "target host name '%s'", conn->host.dispname); res = CURLE_PEER_FAILED_VERIFICATION; } else { -- 1.8.1.2 ------------------------------------------------------------------- List admin: http://cool.haxx.se/list/listinfo/curl-library Etiquette: http://curl.haxx.se/mail/etiquette.html
