Subject: [Boost-bugs] [Boost C++ Libraries] #8373: SSL verify_peer fails
From: Boost C++ Libraries (noreply_at_[hidden])
Date: 2013-04-03 06:32:30
#8373: SSL verify_peer fails
------------------------------+---------------------------------------------
Reporter: lloyd@… | Owner: chris_kohlhoff
Type: Bugs | Status: new
Milestone: To Be Determined | Component: asio
Version: Boost 1.45.0 | Severity: Showstopper
Keywords: SSL verify_peer |
------------------------------+---------------------------------------------
If asio ssl verify peer is used to verify only one peer, works correctly.
If I have multiple "types" of clients to be verified, it failes.
Eg.
{{{
ctx.set_options(boost::asio::ssl::context::default_workarounds|
boost::asio::ssl::context::no_sslv2|
boost::asio::ssl::context::single_dh_use);
ctx.set_password_callback(boost::bind(&SSLCertificate::GetCertificatePassword,
this));
ctx.set_verify_mode(boost::asio::ssl::context::verify_peer|boost::asio::ssl::context::verify_fail_if_no_peer_cert);
ctx.use_certificate_file("private_key.pem",boost::asio::ssl::context::pem);
ctx.use_private_key_file("private_key.pem",boost::asio::ssl::context::pem);
ctx.load_verify_file("client1_cert.pem");
//If the following line is excluded, it works correctly by verifying
client1, otherwise handshake fails!
ctx.load_verify_file("client2_cert.pem");
}}}
-- Ticket URL: <https://svn.boost.org/trac/boost/ticket/8373> Boost C++ Libraries <http://www.boost.org/> Boost provides free peer-reviewed portable C++ source libraries.
This archive was generated by hypermail 2.1.7 : 2017-02-16 18:50:12 UTC