diff options
| author | Lee Clagett <code@leeclagett.com> | 2019-03-12 18:16:47 -0400 |
|---|---|---|
| committer | Lee Clagett <code@leeclagett.com> | 2019-04-06 23:47:06 -0400 |
| commit | f18a069fcc5ad5d18bde93d9ee2902354f2add9d (patch) | |
| tree | 51b4eff8f7267f65bd5e6960c858faedcc166e0c /src | |
| parent | Change SSL certificate file list to OpenSSL builtin load_verify_location (diff) | |
| download | monero-f18a069fcc5ad5d18bde93d9ee2902354f2add9d.tar.xz | |
Do not require client certificate unless server has some whitelisted.
Currently a client must provide a certificate, even if the server is
configured to allow all certificates. This drops that requirement from
the client - unless the server is configured to use a CA file or
fingerprint(s) for verification - which is the standard behavior for SSL
servers.
The "system-wide" CA is not being used as a "fallback" to verify clients
before or after this patch.
Diffstat (limited to 'src')
0 files changed, 0 insertions, 0 deletions