diff options
| author | Daniel Stenberg <daniel@haxx.se> | 2010-12-15 11:11:20 +0100 |
|---|---|---|
| committer | Daniel Stenberg <daniel@haxx.se> | 2010-12-15 16:05:17 +0100 |
| commit | c75a9fef592a412de707b45ea1a6f814cf65a23f (patch) | |
| tree | 2dfa797269252f84289c02161d1bfaaa80cb33b3 /lib | |
| parent | 9035709e25232b0a256684626405e0d0b4c15099 (diff) | |
axtls_connect: allow connect without peer verification
The SSL_SERVER_VERIFY_LATER bit in the ssl_ctx_new() call allows the
code to verify the peer certificate explicitly after the handshake and
then the "data->set.ssl.verifypeer" option works.
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/axtls.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/axtls.c b/lib/axtls.c index 855b554b4..152de6f2c 100644 --- a/lib/axtls.c +++ b/lib/axtls.c @@ -156,7 +156,7 @@ Curl_axtls_connect(struct connectdata *conn, const char *x509; /* Assuming users will not compile in custom key/cert to axTLS */ - uint32_t client_option = SSL_NO_DEFAULT_KEY; + uint32_t client_option = SSL_NO_DEFAULT_KEY|SSL_SERVER_VERIFY_LATER; if(conn->ssl[sockindex].state == ssl_connection_complete) /* to make us tolerant against being called more than once for the |