File 0490-ssl-Clarify-warning.patch of Package erlang
From 9eac5acb91fc0e385c037036cb90bd5a6b359660 Mon Sep 17 00:00:00 2001
From: Ingela Anderton Andin <ingela@erlang.org>
Date: Wed, 21 Sep 2022 15:25:31 +0200
Subject: [PATCH] ssl: Clarify warning
Closes #GH-6307
---
lib/ssl/src/ssl.erl | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git a/lib/ssl/src/ssl.erl b/lib/ssl/src/ssl.erl
index 571a00e627..53e58ceee9 100644
--- a/lib/ssl/src/ssl.erl
+++ b/lib/ssl/src/ssl.erl
@@ -2873,8 +2873,9 @@ add_filter(Filter, Filters) ->
maybe_client_warn_no_verify(#{verify := verify_none,
warn_verify_none := true,
log_level := LogLevel}, client) ->
- ssl_logger:log(warning, LogLevel, #{description => "Authenticity is not established by certificate path validation",
- reason => "Option {verify, verify_peer} and cacertfile/cacerts is missing"}, ?LOCATION);
+ ssl_logger:log(warning, LogLevel, #{description => "Server authenticity is not verified since certificate path validation is not enabled",
+ reason => "The option {verify, verify_peer} and one of the options 'cacertfile' or "
+ "'cacerts' are required to enable this."}, ?LOCATION);
maybe_client_warn_no_verify(_,_) ->
%% Warning not needed. Note client certificate validation is optional in TLS
ok.
--
2.35.3