From: Doug MacEachern <dougm@apache.org>
Date: Sat, 30 Mar 2002 06:03:08 +0000 (+0000)
Subject: change sc->server references to myCtxConfig, so proxy can use the
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=ed6d34bd0dcadf52b0d9717969b1188d658807d1;p=apache

change sc->server references to myCtxConfig, so proxy can use the
verify callback.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@94332 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/modules/ssl/ssl_engine_kernel.c b/modules/ssl/ssl_engine_kernel.c
index 96ec929674..f544b4ebd3 100644
--- a/modules/ssl/ssl_engine_kernel.c
+++ b/modules/ssl/ssl_engine_kernel.c
@@ -1265,6 +1265,7 @@ int ssl_callback_SSLVerify(int ok, X509_STORE_CTX *ctx)
     SSLSrvConfigRec *sc = mySrvConfig(s);
     SSLDirConfigRec *dc = r ? myDirConfig(r) : NULL;
     SSLConnRec *sslconn = myConnConfig(conn);
+    modssl_ctx_t *mctx  = myCtxConfig(sslconn);
 
     /* Get verify ingredients */
     int errnum   = X509_STORE_CTX_get_error(ctx);
@@ -1301,7 +1302,7 @@ int ssl_callback_SSLVerify(int ok, X509_STORE_CTX *ctx)
         verify = dc->nVerifyClient;
     }
     else {
-        verify = sc->server->auth.verify_mode;
+        verify = mctx->auth.verify_mode;
     }
 
     if (ssl_verify_error_is_optional(errnum) &&
@@ -1344,7 +1345,7 @@ int ssl_callback_SSLVerify(int ok, X509_STORE_CTX *ctx)
         depth = dc->nVerifyDepth;
     }
     else {
-        depth = sc->server->auth.verify_depth;
+        depth = mctx->auth.verify_depth;
     }
 
     if (errdepth > depth) {