Mercurial > dovecot > original-hg > dovecot-1.2

changeset 5528:bad62bc7bafc HEAD

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Send list of CA names to client when using ssl_verify_client_cert=yes.
author Timo Sirainen <tss@iki.fi>
date Fri, 06 Apr 2007 12:30:03 +0300
parents 3b25d89caa93
children fd13f04e1fda
files src/login-common/ssl-proxy-openssl.c
diffstat 1 files changed, 2 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- a/src/login-common/ssl-proxy-openssl.c	Wed Apr 04 13:28:37 2007 +0300
+++ b/src/login-common/ssl-proxy-openssl.c	Fri Apr 06 12:30:03 2007 +0300
@@ -756,6 +756,8 @@
 		SSL_CTX_set_verify(ssl_ctx, SSL_VERIFY_PEER |
 				   SSL_VERIFY_CLIENT_ONCE,
 				   ssl_verify_client_cert);
+		SSL_CTX_set_client_CA_list(ssl_ctx,
+					   SSL_load_client_CA_file(cafile));
 	}
 
 	/* PRNG initialization might want to use /dev/urandom, make sure it