[Nut-upsdev] SSL certificate verification with OpenSSL in NUTtrunk
EmilienKia at Eaton.com
EmilienKia at Eaton.com
Thu Jan 13 14:54:56 UTC 2011
Hi all,
I have tested with many configurations and whatever certificate
configuration (with, without, self-signed or not) used, server
certificate is always approved.
Reverting commit r2819 seems fixing the problem.
Index: /trunk/clients/upsclient.c
===================================================================
--- /trunk/clients/upsclient.c (revision 2724)
+++ /trunk/clients/upsclient.c (revision 2819)
@@ -387,5 +387,5 @@
}
- SSL_set_verify(ups->ssl, ssl_mode, NULL);
+ SSL_CTX_set_verify(ups->ssl_ctx, ssl_mode, NULL);
return 1;
IMHO, as the secured socket is already instanciated, context
modification is not propagated to the socket so the secured socket does
not switch to "verify" mode.
Do I revert commit ?
BR,
Emilien
--------------------------------------------------------------------------
More information about the Nut-upsdev
mailing list