SSL docs: Be more explicit about the threats of ignoring SSL errors

... because almost everybody gets it wrong almost every time. Change-Id: I54938ef094323ba8de02186b585b11b9579f3ca4 Reviewed-by: Richard J. Moore <rich@kde.org>
author: Peter Hartmann <phartmann@rim.com> 2013-02-13 11:59:38 +0100
committer: The Qt Project <gerrit-noreply@qt-project.org> 2013-02-16 09:28:03 +0100
commit: eaa18f306341818165c2ee4fc22750da04d5e45e (patch)
tree: 646e93213844365f5d9c4a16f17d576a79866848 /src/network/ssl
parent: abb8beb06490123f1a4a2053d728ae2891726a88 (diff)
1 files changed, 7 insertions, 3 deletions
diff --git a/src/network/ssl/qsslsocket.cpp b/src/network/ssl/qsslsocket.cpp
index cfc3c19bba..f0c3f40a28 100644
--- a/src/network/ssl/qsslsocket.cpp
+++ b/src/network/ssl/qsslsocket.cpp
@@ -1714,9 +1714,13 @@ void QSslSocket::startServerEncryption()
     will not emit the sslErrors() signal, and it is unnecessary to
     call this function.
 
-    Ignoring errors that occur during an SSL handshake should be done
-    with caution. A fundamental characteristic of secure connections
-    is that they should be established with an error free handshake.
+    \warning Be sure to always let the user inspect the errors
+    reported by the sslErrors() signal, and only call this method
+    upon confirmation from the user that proceeding is ok.
+    If there are unexpected errors, the connection should be aborted.
+    Calling this method without inspecting the actual errors will
+    most likely pose a security risk for your application. Use it
+    with great care!
 
     \sa sslErrors()
 */
author	Peter Hartmann <phartmann@rim.com>	2013-02-13 11:59:38 +0100
committer	The Qt Project <gerrit-noreply@qt-project.org>	2013-02-16 09:28:03 +0100
commit	eaa18f306341818165c2ee4fc22750da04d5e45e (patch)
tree	646e93213844365f5d9c4a16f17d576a79866848 /src/network/ssl
parent	abb8beb06490123f1a4a2053d728ae2891726a88 (diff)