| Log Message: |
Properly handle the 'accepted_failures' flag of SVN_AUTH_CRED_SSL_SERVER_TRUST
handlers in ra_serf. Before this patch the code assumed that all handlers would
always accept all failures when they return a credential.
In certain client scenarios this bug could allow certain certificate errors
to go unnoticed, but non of the standard clients is affected because all of
them always accept all certificate failures at once or none at all.
* subversion/libsvn_ra_serf/util.c
(ssl_server_cert): Clear accepted failures and obtain further results
in an attempt to accept more failures.
Return an error when at least one failure type is not accepted.
Found by: SharpSvn tests
|
subversion/trunk/subversion/libsvn_ra_serf/util.c