Mercurial > dovecot > original-hg > dovecot-1.2
changeset 5528:bad62bc7bafc HEAD
Send list of CA names to client when using ssl_verify_client_cert=yes.
author | Timo Sirainen <tss@iki.fi> |
---|---|
date | Fri, 06 Apr 2007 12:30:03 +0300 |
parents | 3b25d89caa93 |
children | fd13f04e1fda |
files | src/login-common/ssl-proxy-openssl.c |
diffstat | 1 files changed, 2 insertions(+), 0 deletions(-) [+] |
line wrap: on
line diff
--- a/src/login-common/ssl-proxy-openssl.c Wed Apr 04 13:28:37 2007 +0300 +++ b/src/login-common/ssl-proxy-openssl.c Fri Apr 06 12:30:03 2007 +0300 @@ -756,6 +756,8 @@ SSL_CTX_set_verify(ssl_ctx, SSL_VERIFY_PEER | SSL_VERIFY_CLIENT_ONCE, ssl_verify_client_cert); + SSL_CTX_set_client_CA_list(ssl_ctx, + SSL_load_client_CA_file(cafile)); } /* PRNG initialization might want to use /dev/urandom, make sure it