|
|
@@ -1530,15 +1530,6 @@ run_ssl_handshake() {
|
|
|
return false;
|
|
|
}
|
|
|
|
|
|
- } else if (verify_result == X509_V_ERR_SELF_SIGNED_CERT_IN_CHAIN) {
|
|
|
- downloader_cat.info()
|
|
|
- << "Self-signed certificate in chain from " << _request.get_url().get_server_and_port() << "\n";
|
|
|
- // This doesn't appear to be an actual validation error. I guess.
|
|
|
- // It's only an error if we don't recognize the root authority.
|
|
|
- // There appear to be some legitimate certs (e.g. from starfield
|
|
|
- // tech) that trigger this error, even though they appear to have
|
|
|
- // a fully-authorized chain up to the root.
|
|
|
-
|
|
|
} else if (verify_result != X509_V_OK) {
|
|
|
downloader_cat.info()
|
|
|
<< "Unable to verify identity of " << _request.get_url().get_server_and_port()
|
David Rose