|
|
@ -770,7 +770,8 @@ static int __verify_certcall(int preverify_ok, X509_STORE_CTX *ctx)
|
|
|
|
/* ok, now we're on top of SSL (depth == 0) certs chain,
|
|
|
|
/* ok, now we're on top of SSL (depth == 0) certs chain,
|
|
|
|
* and we can validate client certificate */
|
|
|
|
* and we can validate client certificate */
|
|
|
|
if(!depth) {
|
|
|
|
if(!depth) {
|
|
|
|
link->pctx->certid = ASN1_INTEGER_get((const ASN1_INTEGER *)X509_get_serialNumber(ctx->current_cert));
|
|
|
|
link->pctx->certid =
|
|
|
|
|
|
|
|
ASN1_INTEGER_get((const ASN1_INTEGER *)X509_get_serialNumber(ctx->current_cert));
|
|
|
|
/* now we're need to check the ssl cert */
|
|
|
|
/* now we're need to check the ssl cert */
|
|
|
|
if(hub->validate_sslpem) {
|
|
|
|
if(hub->validate_sslpem) {
|
|
|
|
if(hub->validate_sslpem(link)) return 0;
|
|
|
|
if(hub->validate_sslpem(link)) return 0;
|
|
|
|