diff options
author | Lee Clagett <code@leeclagett.com> | 2019-03-12 18:16:47 -0400 |
---|---|---|
committer | Lee Clagett <code@leeclagett.com> | 2019-04-06 23:47:06 -0400 |
commit | f18a069fcc5ad5d18bde93d9ee2902354f2add9d (patch) | |
tree | 51b4eff8f7267f65bd5e6960c858faedcc166e0c /src/rpc/core_rpc_server.cpp | |
parent | Change SSL certificate file list to OpenSSL builtin load_verify_location (diff) | |
download | monero-f18a069fcc5ad5d18bde93d9ee2902354f2add9d.tar.xz |
Do not require client certificate unless server has some whitelisted.
Currently a client must provide a certificate, even if the server is
configured to allow all certificates. This drops that requirement from
the client - unless the server is configured to use a CA file or
fingerprint(s) for verification - which is the standard behavior for SSL
servers.
The "system-wide" CA is not being used as a "fallback" to verify clients
before or after this patch.
Diffstat (limited to 'src/rpc/core_rpc_server.cpp')
0 files changed, 0 insertions, 0 deletions