Commit c7667e1e authored by Pekka Pessi's avatar Pekka Pessi

Using SSL_VERIFY_NONE - do not ask for client certificate.

It looks like openssl does not allow for client not to have certificate.

darcs-hash:20060418235604-65a35-f01ddc6fe94505c2aad97916d64f1525e3cde446.gz
parent 0911e690
......@@ -220,7 +220,8 @@ int tls_init_context(tls_t *tls, tls_issues_t const *ti)
SSL_CTX_set_verify_depth(tls->ctx, ti->verify_depth);
SSL_CTX_set_verify(tls->ctx,
SSL_VERIFY_PEER /* | SSL_VERIFY_FAIL_IF_NO_PEER_CERT */,
SSL_VERIFY_NONE
/* SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT */,
tls_verify_cb);
if (!SSL_CTX_set_cipher_list(tls->ctx, ti->cipher)) {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment