647 static int tls_mbedtls_verify_cb(void *arg, mbedtls_x509_crt *crt, int depth, uint32_t *flags);
2944                                                              int depth,  in tls_mbedtls_verify_fail_event()  argument
2959     ev.cert_fail.depth      = depth;  in tls_mbedtls_verify_fail_event()
2971                                                                  int depth)  in tls_mbedtls_verify_cert_event()  argument
2990     ev.peer_cert.depth = depth;  in tls_mbedtls_verify_cert_event()
2992     if (depth == 0)  in tls_mbedtls_verify_cert_event()
3090 static int tls_mbedtls_verify_cb(void *arg, mbedtls_x509_crt *crt, int depth, uint32_t *flags)  in tls_mbedtls_verify_cb()  argument
3108     if (depth > 8)  in tls_mbedtls_verify_cb()
3112 … tls_mbedtls_verify_fail_event(crt, depth, "client cert chain too long", TLS_FAIL_BAD_CERTIFICATE);  in tls_mbedtls_verify_cb()
3116         if (depth > 0)  in tls_mbedtls_verify_cb()
3127                 tls_mbedtls_verify_fail_event(crt, depth, "cert hash mismatch", TLS_FAIL_UNTRUSTED);  in tls_mbedtls_verify_cb()
3134     else if (depth == 0)  in tls_mbedtls_verify_cb()
3143             tls_mbedtls_verify_fail_event(crt, depth, "internal error", TLS_FAIL_UNSPECIFIED);  in tls_mbedtls_verify_cb()
3155 …          tls_mbedtls_verify_fail_event(crt, depth, "Subject mismatch", TLS_FAIL_SUBJECT_MISMATCH);  in tls_mbedtls_verify_cb()
3161 …    tls_mbedtls_verify_fail_event(crt, depth, "AltSubject mismatch", TLS_FAIL_ALTSUBJECT_MISMATCH);  in tls_mbedtls_verify_cb()
3167 …tls_mbedtls_verify_fail_event(crt, depth, "Domain suffix mismatch", TLS_FAIL_DOMAIN_SUFFIX_MISMATC…  in tls_mbedtls_verify_cb()
3173             tls_mbedtls_verify_fail_event(crt, depth, "Domain mismatch", TLS_FAIL_DOMAIN_MISMATCH);  in tls_mbedtls_verify_cb()
3178             tls_mbedtls_verify_fail_event(crt, depth, "Distinguished Name", TLS_FAIL_DN_MISMATCH);  in tls_mbedtls_verify_cb()
3197                 tls_mbedtls_verify_fail_event(crt, depth, "Insufficient RSA modulus size",  in tls_mbedtls_verify_cb()
3206             tls_mbedtls_verify_fail_event(crt, depth,  in tls_mbedtls_verify_cb()
3230     tls_mbedtls_verify_cert_event(conn, crt, depth);  in tls_mbedtls_verify_cb()
3270             tls_mbedtls_verify_fail_event(crt, depth, errmsg, reason);  in tls_mbedtls_verify_cb()
3274         if (depth == 0 && conn->peer_subject)  in tls_mbedtls_verify_cb()
3280     else if (depth == 0)  in tls_mbedtls_verify_cb()
3287 …      tls_mbedtls_verify_fail_event(crt, depth, "server chain probe", TLS_FAIL_SERVER_CHAIN_PROBE);  in tls_mbedtls_verify_cb()