Commit 10956689 authored by Georgi Kodinov's avatar Georgi Kodinov

Bug #18384260: MULTIPLE SECURITY ISSUES IN CERTIFICATE VALIDATION

the 5.5 version of the fix.
Added a call to X509_verify_cert_error_string() into the client certificate
verification code.
parent 832bebcd
Branches unavailable
Tags unavailable
No related merge requests found
......@@ -1909,6 +1909,12 @@ static int ssl_verify_server_cert(Vio *vio, const char* server_hostname, const c
DBUG_RETURN(1);
}
if (X509_V_OK != SSL_get_verify_result(ssl))
{
*errptr= "Failed to verify the server certificate";
X509_free(server_cert);
DBUG_RETURN(1);
}
/*
We already know that the certificate exchanged was valid; the SSL library
handled that. Now we need to verify that the contents of the certificate
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment