Lines Matching defs:verify
316 int depth, verify_old, verify, n;
519 * The depth checks are handled by us manually inside the verify callback
522 * OpenSSL about the currently verify depth. Instead we remember it in our
524 * renegotiation if the reconfigured/new verify depth is less than the
525 * currently active/remembered verify depth (because this means more
544 * We force a renegotiation if the reconfigured/new verify type is
545 * stronger than the currently active verify type.
550 * currently active verify type is "none" but a client certificate is
560 verify = SSL_VERIFY_NONE;
564 verify |= SSL_VERIFY_PEER_STRICT;
572 verify |= SSL_VERIFY_PEER;
575 SSL_set_verify(ssl, verify, ssl_callback_SSLVerify);
579 if (!renegotiate && verify != verify_old) {
581 (verify != SSL_VERIFY_NONE)) ||
584 (verify & SSL_VERIFY_PEER)) ||
587 (verify & SSL_VERIFY_FAIL_IF_NO_PEER_CERT)))
618 && ((verify & SSL_VERIFY_PEER) ||
619 (verify & SSL_VERIFY_FAIL_IF_NO_PEER_CERT))) {
629 if (verify & SSL_VERIFY_FAIL_IF_NO_PEER_CERT) {
1317 return "'Require ssl-verify-client' does not take arguments";
1396 /* Get verify ingredients */
1399 int depth, verify;
1416 verify = dc->nVerifyClient;
1419 verify = mctx->auth.verify_mode;
1422 if (verify == SSL_CVERIFY_NONE) {
1432 (verify == SSL_CVERIFY_OPTIONAL_NO_CA))