TLS: Ignore client cert when tls-auth-clients off. (#7457)
This commit is contained in:
parent
6a014af79a
commit
5266293a0f
@ -337,9 +337,7 @@ connection *connCreateAcceptedTLS(int fd, int require_auth) {
|
||||
conn->c.state = CONN_STATE_ACCEPTING;
|
||||
|
||||
if (!require_auth) {
|
||||
/* We still verify certificates if provided, but don't require them.
|
||||
*/
|
||||
SSL_set_verify(conn->ssl, SSL_VERIFY_PEER, NULL);
|
||||
SSL_set_verify(conn->ssl, SSL_VERIFY_NONE, NULL);
|
||||
}
|
||||
|
||||
SSL_set_fd(conn->ssl, conn->c.fd);
|
||||
|
Loading…
Reference in New Issue
Block a user