MINOR: server: Make 'default-server' support 'verify' keyword. This patch makes 'default-server' directive support 'verify' keyword.

commit: 7c8cd587c2e6873a5bde38a1ce0fc6e08e1c4330 [log] [tgz]
author: Frédéric Lécaille <flecaille@haproxy.com> Mon Mar 13 13:41:16 2017 +0100
committer: Willy Tarreau <w@1wt.eu> Mon Mar 27 14:37:01 2017 +0200
tree: f2796e234c01aafb440d69512f8ee5986996e357
parent: 18388c910c6d308cb5f068860468df19146eb508 [diff]
diff --git a/src/server.c b/src/server.c
index ddb2842..b69d1d1 100644
--- a/src/server.c
+++ b/src/server.c

@@ -1295,6 +1295,10 @@
 			newsrv->dns_opts.pref_net_nb = curproxy->defsrv.dns_opts.pref_net_nb;
 			newsrv->init_addr_methods = curproxy->defsrv.init_addr_methods;
 			newsrv->init_addr         = curproxy->defsrv.init_addr;
+#if defined(USE_OPENSSL)
+			/* SSL config. */
+			newsrv->ssl_ctx.verify = curproxy->defsrv.ssl_ctx.verify;
+#endif
 
 			cur_arg = 3;
 		} else {

diff --git a/src/ssl_sock.c b/src/ssl_sock.c
index 802f0a0..5285e24 100644
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c

@@ -7517,7 +7517,7 @@
 	{ "tlsv11",                  srv_parse_tlsv11,            0, 1 }, /* enable TLSv11 */
 	{ "tlsv12",                  srv_parse_tlsv12,            0, 1 }, /* enable TLSv12 */
 	{ "tls-tickets",             srv_parse_tls_tickets,       0, 1 }, /* enable session resumption tickets */
-	{ "verify",                  srv_parse_verify,            1, 0 }, /* set SSL verify method */
+	{ "verify",                  srv_parse_verify,            1, 1 }, /* set SSL verify method */
 	{ "verifyhost",              srv_parse_verifyhost,        1, 0 }, /* require that SSL cert verifies for hostname */
 	{ NULL, NULL, 0, 0 },
 }};
commit	7c8cd587c2e6873a5bde38a1ce0fc6e08e1c4330	[log] [tgz]
author	Frédéric Lécaille <flecaille@haproxy.com>	Mon Mar 13 13:41:16 2017 +0100
committer	Willy Tarreau <w@1wt.eu>	Mon Mar 27 14:37:01 2017 +0200
tree	f2796e234c01aafb440d69512f8ee5986996e357
parent	18388c910c6d308cb5f068860468df19146eb508 [diff]