[Net-ssleay-devel] Callback set using SSL_set_verify() does not
appear to work
Andrew Pimlott
andrew at pimlott.net
Wed Jun 28 03:46:39 UTC 2006
The above bug appears in the Net::SSLeay documentation. However, the
explanation is rather mysterious, because it refers to see "ssl/ssl_lib.c
line 1029" without saying which version of ssleay/openssl. I wonder if
someone can give me a clue.
I have some SSL client code where my callback gets called for one
server, but not for another that is configured very similarly, down to
using the same server key/cert and cert chain. Actually, what is really
frustrating is that SSL_verify_mode also seems to be ignored for the
second server. For both servers, I expect a "self signed certificate"
error. In fact, when I run openssl s_client (using the same client
key/cert and CA certs), that's what I get. But with Net::SSLeay, the
connection is established without a complaint. Any ideas?
Andrew
More information about the Net-ssleay-devel
mailing list