-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 30/03/11 14:23, David Sommerseth wrote:
> Commit 2e8337de248ef0b5b48cbb2964da0d5c3f28b15b introduced a new
> feature for using other SSL certificate fields for authentication
> than then CN field.
>
> This commit introduced a bug, which made the verify_callback()
> function getting called even if --client-cert-not-required was
> enabled in the config.
>
> The reason for this was that an 'else' statement was lacking a
> couple of curly braces. The offending commit in reality moved
> the setup the verify_callback() function out of the 'else'
> statement.
Applied to the git tree.
commit 008a18e772bf1854f9a2102bef4b3d5b0a08a66b (master)
commit 272aef2f0fd6b8c81c397fc32a503776e2b4bef1 (beta2.2)
Author: David Sommerseth <dav...@redhat.com>
List-Post: openvpn-devel@lists.sourceforge.net
Date: Wed Mar 30 14:14:21 2011 +0200
Fix the --client-cert-not-required feature
Report-URL: https://community.openvpn.net/openvpn/ticket/108
Report-URL: https://forums.openvpn.net/topic7751.html
Signed-off-by: David Sommerseth <dav...@redhat.com>
Acked-by: Jan Just Keijser <janj...@nikhef.nl>
Kind regards,
David Sommerseth
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAk2USnMACgkQDC186MBRfrqxygCcDCPh+AAA7Zo7Letkd78yO3pJ
IAQAn3Jdm7Yt7uGWZSeW4r6dOPNKSO9U
=qe/M
-----END PGP SIGNATURE-----
