httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Kaspar Brand <httpd-dev.2...@velox.ch>
Subject Re: SNI in 2.2.x (Re: Time for 2.2.10?)
Date Thu, 28 Aug 2008 17:45:10 GMT
I wrote:
> When I added the second condition to the first if statement, I was
> assuming that the default for auth.verify_depth is UNSET as well.
> However, it's initialized to "1" (i.e. SSL_CVERIFY_OPTIONAL)
                                         ^^^^^^^^^^^^^^^^^^^^
Wrong, of course - this macro applies to verify_*mode* (not verify_depth).

> Oden, if you change the line
> 
>      (sc->server->auth.verify_depth != UNSET)) {
> to
>      (sc->server->auth.verify_depth != SSL_CVERIFY_OPTIONAL)) {

Sorry, should consequently be changed to

      (sc->server->auth.verify_depth != 1)) {

Kaspar

Mime
View raw message