httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Oden Eriksson <oeriks...@mandriva.com>
Subject Re: SNI in 2.2.x (Re: Time for 2.2.10?)
Date Fri, 29 Aug 2008 09:22:34 GMT
Den Thursday 28 August 2008 19:45:10 skrev Kaspar Brand:
> I wrote:
> > When I added the second condition to the first if statement, I was
> > assuming that the default for auth.verify_depth is UNSET as well.
> > However, it's initialized to "1" (i.e. SSL_CVERIFY_OPTIONAL)
>
>                                          ^^^^^^^^^^^^^^^^^^^^
> Wrong, of course - this macro applies to verify_*mode* (not verify_depth).
>
> > Oden, if you change the line
> >
> >      (sc->server->auth.verify_depth != UNSET)) {
> > to
> >      (sc->server->auth.verify_depth != SSL_CVERIFY_OPTIONAL)) {
>
> Sorry, should consequently be changed to
>
>       (sc->server->auth.verify_depth != 1)) {
>
> Kaspar

Yes, that seems to have fixed it.

-- 
Regards // Oden Eriksson


Mime
View raw message