Change authmode default to Required on client

2025-07-20 16:42:59 +03:00 · 2015-03-27 17:52:25 +01:00
parent 606df8c199
commit fa44f20b9f
6 changed files with 33 additions and 26 deletions
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h
@ -1156,8 +1156,9 @@ int ssl_set_transport( ssl_context *ssl, int transport );
 * \param ssl      SSL context
 * \param authmode can be:
 *
- *  SSL_VERIFY_NONE:      peer certificate is not checked (default),
- *                        this is insecure and SHOULD be avoided.
+ *  SSL_VERIFY_NONE:      peer certificate is not checked
+ *                        (default on server)
+ *                        (insecure on client)
 *
 *  SSL_VERIFY_OPTIONAL:  peer certificate is checked, however the
 *                        handshake continues even if verification failed;