Support verify_depth from the SSL API without need for user-defined

callbacks. Submitted by: Reviewed by: PR:
1999-05-01 03:20:40 +00:00
parent 69bb35ed72
commit 7f89714e64
7 changed files with 45 additions and 5 deletions
--- a/7
+++ b/7
@@ -5,6 +5,13 @@

 Changes between 0.9.2b and 0.9.3

+  *) Support verify_depth from the SSL API.
+     x509_vfy.c had what can be considered an off-by-one-error:
+     Its depth (which was not part of the external interface)
+     was actually counting the number of certificates in a chain;
+     now it really counts the depth.
+     [Bodo Moeller]
+
  *) New function SSL_CTX_set_session_id_context that allows to set a default
     value (so that you don't need SSL_set_session_id_context for each
     connection using the SSL_CTX).