Create configuration option to bypass the mbedtls_ssl_set_hostname check Update generated files. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

commit: ae59c5232274df36b1b58dd52eb74cb153829a1a [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Thu Feb 13 13:46:58 2025 +0100
committer: Gilles Peskine <Gilles.Peskine@arm.com> Mon Feb 24 18:04:14 2025 +0100
tree: ae69d16bdb3fb9795408b6d34dc1ab4450fdb162
parent: 63f958df772f763dfd5b6d0506f9cac9ed34c34e [diff] [blame]
diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index 4b3a67c..541b879 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h

@@ -213,6 +213,9 @@
  *   #MBEDTLS_SSL_VERIFY_REQUIRED (default).
  * - Certificate authentication is enabled.
  * - The client does not call mbedtls_ssl_set_hostname().
+ * - The configuration option
+ *   #MBEDTLS_SSL_CLI_ALLOW_WEAK_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME
+ *   is not enabled.
  */
 #define MBEDTLS_ERR_SSL_CERTIFICATE_VERIFICATION_WITHOUT_HOSTNAME  -0x5D80
commit	ae59c5232274df36b1b58dd52eb74cb153829a1a	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Thu Feb 13 13:46:58 2025 +0100
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Mon Feb 24 18:04:14 2025 +0100
tree	ae69d16bdb3fb9795408b6d34dc1ab4450fdb162
parent	63f958df772f763dfd5b6d0506f9cac9ed34c34e [diff] [blame]