[MXS-2786] Peer certificate isn't mandatory Created: 2019-12-03 Updated: 2020-01-27 Resolved: 2019-12-03 |
|
| Status: | Closed |
| Project: | MariaDB MaxScale |
| Component/s: | Core |
| Affects Version/s: | 2.3.14 |
| Fix Version/s: | 2.3.15, 2.4.5 |
| Type: | Bug | Priority: | Major |
| Reporter: | markus makela | Assignee: | markus makela |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Description |
|
The SSL_VERIFY_FAIL_IF_NO_PEER_CERT flag is missing from the SSL_CTX_set_verify call. This causes certificate verification to be skipped when the client does not present a certificate even if peer verification is required. |