[openssl-users] Is verification supposed to fail with SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT without SSL_CTX_set_client_CA_list?
Michel
michel.sales at free.fr
Sat Feb 27 23:01:55 UTC 2016
Hi Jeff,
The test I just ran was done with NO custom callback :
SSL_CTX_set_verify( pCtx, AUTH_REQUIRE, NULL );
with AUTH_REQUIRE defined as ( SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT )
-----Message d'origine-----
De : Jeffrey Walton [mailto:noloader at gmail.com]
Envoyé : samedi 27 février 2016 23:48
Does your server use the default verify callback? Or does it have a custom callback?
(The original question uses the default verify callback).
More information about the openssl-users
mailing list