[fix] verify_result reports correct error with VERIFY_NONE (#25)

C OpenSSL always runs ssl_verify_cert_chain and stores the result;
VERIFY_NONE only suppresses the handshake abort. JRuby was skipping
verification entirely when VERIFY_NONE was set, leaving verify_result
at the bogus default of 1. Now always runs verification to populate
the result (e.g. V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT for self-signed
certs) and only throws CertificateException when VERIFY_PEER is set.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Author: kares

src/main/java/org/jruby/ext/openssl/SSLContext.java

@@ -310,7 +310,7 @@ public SSLContext(Ruby runtime, RubyClass type) {
     private PKey t_key;
     private X509Cert t_cert;
 
-    private int verifyResult = 1; /* avoid 0 (= X509_V_OK) just in case */
+    private int verifyResult = X509Utils.V_OK; // C OpenSSL initializes to X509_V_OK
 
     //private int sessionCacheMode; // 2 default on MRI
     private int sessionCacheSize; // 20480
@@ -1217,18 +1217,23 @@ public java.security.cert.X509Certificate[] getAcceptedIssuers() {
         }
 
         // c: ssl_verify_cert_chain
+        // C OpenSSL always runs verification to populate verify_result
+        // (accessible via SSL_get_verify_result), but only aborts the
+        // handshake when VERIFY_PEER is set. VERIFY_NONE still records
+        // the error (e.g. V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT) for
+        // inspection after connect.
         private void checkTrusted(final String purpose, final X509Certificate[] chain) throws CertificateException {
             if ( chain != null && chain.length > 0 ) {
-                if ( (internalContext.verifyMode & SSL.VERIFY_PEER) != 0 ) {
-                    // verify_peer
-                    final StoreContext storeContext = internalContext.createStoreContext(purpose);
-                    if ( storeContext == null ) {
+                final StoreContext storeContext = internalContext.createStoreContext(purpose);
+                if ( storeContext == null ) {
+                    if ( (internalContext.verifyMode & SSL.VERIFY_PEER) != 0 ) {
                         throw new CertificateException("couldn't initialize store");
                     }
-                    storeContext.setCertificate(chain[0]);
-                    storeContext.setChain(chain);
-                    verifyChain(storeContext);
+                    return;
                 }
+                storeContext.setCertificate(chain[0]);
+                storeContext.setChain(chain);
+                verifyChain(storeContext, (internalContext.verifyMode & SSL.VERIFY_PEER) != 0);
             } else {
                 if ( (internalContext.verifyMode & SSL.VERIFY_FAIL_IF_NO_PEER_CERT) != 0 ) {
                     // fail if no peer cert
@@ -1237,7 +1242,7 @@ private void checkTrusted(final String purpose, final X509Certificate[] chain) t
             }
         }
 
-        private void verifyChain(final StoreContext storeContext) throws CertificateException {
+        private void verifyChain(final StoreContext storeContext, final boolean raiseOnFailure) throws CertificateException {
             final int ok;
             try {
                 ok = storeContext.verifyCertificate();
@@ -1247,11 +1252,14 @@ private void verifyChain(final StoreContext storeContext) throws CertificateExce
                 if ( storeContext.getError() == X509Utils.V_OK ) {
                     internalContext.setLastVerifyResult(X509Utils.V_ERR_CERT_REJECTED);
                 }
-                throw new CertificateException("certificate verify failed", e);
+                if ( raiseOnFailure ) {
+                    throw new CertificateException("certificate verify failed", e);
+                }
+                return;
             }
 
             internalContext.setLastVerifyResult(storeContext.getError());
-            if ( ok == 0 ) {
+            if ( ok == 0 && raiseOnFailure ) {
                 throw new CertificateException("certificate verify failed");
             }
         }

src/test/ruby/ssl/test_ssl.rb

@@ -189,6 +189,91 @@ def test_verify_hostname_not_enforced_when_disabled
     end
   end
 
+  # GH-25: verify_result should report the actual verification error even
+  # when VERIFY_NONE is set. C OpenSSL always runs ssl_verify_cert_chain
+  # and stores the result; VERIFY_NONE only suppresses the handshake abort.
+
+  def test_verify_result_with_verify_none_self_signed
+    # Self-signed cert: verify_result should be V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT
+    self_key = OpenSSL::PKey::RSA.new(2048)
+    now = Time.now
+    self_cert = issue_cert(
+      OpenSSL::X509::Name.parse("/CN=Self Signed"), self_key, 10,
+      [["keyUsage", "keyEncipherment,digitalSignature", true]],
+      nil, nil, not_before: now, not_after: now + 1800)
+
+    @svr_cert = self_cert
+    @svr_key = self_key
+    start_server0(PORT, OpenSSL::SSL::VERIFY_NONE, true) do |server, port|
+      ctx = OpenSSL::SSL::SSLContext.new
+      ctx.verify_mode = OpenSSL::SSL::VERIFY_NONE
+      sock = TCPSocket.new("127.0.0.1", port)
+      ssl = OpenSSL::SSL::SSLSocket.new(sock, ctx)
+      ssl.connect
+      assert_equal OpenSSL::X509::V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT, ssl.verify_result
+    ensure
+      ssl&.close rescue nil
+      sock&.close rescue nil
+    end
+  end
+
+  def test_verify_result_with_verify_none_valid_cert
+    # Valid cert signed by trusted CA: verify_result should be V_OK
+    start_server0(PORT, OpenSSL::SSL::VERIFY_NONE, true) do |server, port|
+      ctx = OpenSSL::SSL::SSLContext.new
+      ctx.verify_mode = OpenSSL::SSL::VERIFY_NONE
+      ctx.cert_store = OpenSSL::X509::Store.new
+      ctx.cert_store.add_cert(@ca_cert)
+      sock = TCPSocket.new("127.0.0.1", port)
+      ssl = OpenSSL::SSL::SSLSocket.new(sock, ctx)
+      ssl.connect
+      assert_equal OpenSSL::X509::V_OK, ssl.verify_result
+    ensure
+      ssl&.close rescue nil
+      sock&.close rescue nil
+    end
+  end
+
+  def test_verify_result_with_verify_peer_valid_cert
+    # VERIFY_PEER with trusted CA: connect succeeds, verify_result is V_OK
+    start_server0(PORT, OpenSSL::SSL::VERIFY_NONE, true) do |server, port|
+      ctx = OpenSSL::SSL::SSLContext.new
+      ctx.verify_mode = OpenSSL::SSL::VERIFY_PEER
+      ctx.cert_store = OpenSSL::X509::Store.new
+      ctx.cert_store.add_cert(@ca_cert)
+      sock = TCPSocket.new("127.0.0.1", port)
+      ssl = OpenSSL::SSL::SSLSocket.new(sock, ctx)
+      ssl.connect
+      assert_equal OpenSSL::X509::V_OK, ssl.verify_result
+    ensure
+      ssl&.close rescue nil
+      sock&.close rescue nil
+    end
+  end
+
+  def test_verify_result_with_verify_peer_self_signed
+    # VERIFY_PEER with self-signed cert: connect should fail
+    self_key = OpenSSL::PKey::RSA.new(2048)
+    now = Time.now
+    self_cert = issue_cert(
+      OpenSSL::X509::Name.parse("/CN=Self Signed"), self_key, 10,
+      [["keyUsage", "keyEncipherment,digitalSignature", true]],
+      nil, nil, not_before: now, not_after: now + 1800)
+
+    @svr_cert = self_cert
+    @svr_key = self_key
+    start_server0(PORT, OpenSSL::SSL::VERIFY_NONE, true) do |server, port|
+      ctx = OpenSSL::SSL::SSLContext.new
+      ctx.verify_mode = OpenSSL::SSL::VERIFY_PEER
+      sock = TCPSocket.new("127.0.0.1", port)
+      ssl = OpenSSL::SSL::SSLSocket.new(sock, ctx)
+      assert_raise(OpenSSL::SSL::SSLError) { ssl.connect }
+    ensure
+      ssl&.close rescue nil
+      sock&.close rescue nil
+    end
+  end
+
   def test_post_connect_check_with_anon_ciphers
     unless OpenSSL::ExtConfig::TLS_DH_anon_WITH_AES_256_GCM_SHA384
       return skip('OpenSSL::ExtConfig::TLS_DH_anon_WITH_AES_256_GCM_SHA384 not enabled')