pike.git
/
lib
/
modules
/
SSL.pmod
/
Connection.pike
version
»
Context lines:
10
20
40
80
file
none
3
pike.git/lib/modules/SSL.pmod/Connection.pike:257:
} // ok, so we have a certificate chain whose client certificate is // issued by an authority known to us. // next we must verify the chain to see if the chain is unbroken mapping result = Standards.X509.verify_certificate_chain(certs, context->trusted_issuers_cache,
-
context->require_trust);
+
context->require_trust
,
+
([ "verifier_algorithms"
+
: context->verifier_algorithms]
)
)
;
// This data isn't actually used internally. session->cert_data = result; if(result->verified && session->server_name && sizeof([array](result->certificates || ({})))) { array(Standards.X509.TBSCertificate) certs = [array(Standards.X509.TBSCertificate)](result->certificates); Standards.X509.TBSCertificate cert = certs[-1]; array(string) globs = Standards.PKCS.Certificate.