From 00f4721b9c393a91acdb883b37be7ae6df88f846 Mon Sep 17 00:00:00 2001
From: Susant Sahani <ssahani@gmail.com>
Date: Mon, 13 May 2024 12:56:21 +0530
Subject: [PATCH] TLS: Abort connection if failed to validate certificate

---
 src/netlog/netlog-tls.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/netlog/netlog-tls.c b/src/netlog/netlog-tls.c
index 3f24d16..304bde1 100644
--- a/src/netlog/netlog-tls.c
+++ b/src/netlog/netlog-tls.c
@@ -102,7 +102,8 @@ int ssl_verify_certificate_validity(int s, X509_STORE_CTX *store) {
                                 }}
                                 break;
                         default:
-                                log_debug("Succesffuly validated certificated: %s", X509_verify_cert_error_string(r));
+                                log_error("Failed to validate remote certificate: %s. Aborting connection ...", X509_verify_cert_error_string(r));
+                                return 0;
                 }
         }