| commit | d6d861b107f6c74484ad0a1afc2147c022e37e87 | [log] [tgz] |
|---|---|---|
| author | Maxim Dounin <mdounin@mdounin.ru> | Mon Dec 05 22:23:22 2016 +0300 |
| committer | Maxim Dounin <mdounin@mdounin.ru> | Mon Dec 05 22:23:22 2016 +0300 |
| tree | 5469df7a20965071dc970548efb74d442720e417 | |
| parent | d02fdbeeeb2867ec513c0de5d045b897645dd694 [diff] |
SSL: $ssl_client_verify extended with a failure reason. Now in case of a verification failure $ssl_client_verify contains "FAILED:<reason>", similar to Apache's SSL_CLIENT_VERIFY, e.g., "FAILED:certificate has expired". Detailed description of possible errors can be found in the verify(1) manual page as provided by OpenSSL.