[Net-ssleay-devel] Callback set using SSL_set_verify() does not appear to work

Andrew Pimlott andrew at pimlott.net
Wed Jun 28 03:46:39 UTC 2006


The above bug appears in the Net::SSLeay documentation.  However, the
explanation is rather mysterious, because it refers to see "ssl/ssl_lib.c
line 1029" without saying which version of ssleay/openssl.  I wonder if
someone can give me a clue.

I have some SSL client code where my callback gets called for one
server, but not for another that is configured very similarly, down to
using the same server key/cert and cert chain.  Actually, what is really
frustrating is that SSL_verify_mode also seems to be ignored for the
second server.  For both servers, I expect a "self signed certificate"
error.  In fact, when I run openssl s_client (using the same client
key/cert and CA certs), that's what I get.  But with Net::SSLeay, the
connection is established without a complaint.  Any ideas?

Andrew



More information about the Net-ssleay-devel mailing list