git.ipfire.org Git - thirdparty/openvpn.git/commit

author	Boris Lytochkin <lytboris@yandex-team.ru>
	Sun, 20 Sep 2015 14:05:22 +0000 (17:05 +0300)
committer	Gert Doering <gert@greenie.muc.de>
	Sun, 20 Sep 2015 16:48:58 +0000 (18:48 +0200)
commit	1e4a3ba3e751017e29db37676e7d3b78d46a97a2
tree	ce240a7f9d16f7103b1c8b3576bce57798dec77f	tree
parent	d7ab314c57a0b851e0e714c903c2bc5ececac3ae	commit \| diff

Log serial number of revoked certificate

In most of situations admin of OpenVPN server needs to know which
particular certificate is used by client.
In the case when certificate is OK, environment variable can be used for
that but once it is revoked, no user scripts are invoked so there is
no way to get serial number: only subject is printed in logs.

So we log certificate serial in case it is revoked.

Sponsored-by: Yandex LLC
Signed-off-by: Boris Lytochkin <lytboris@yandex-team.ru>
Acked-by: Steffan Karger <steffan.karger@fox-it.com>
Message-Id: <55FEBF7E.3010209@yandex-team.ru>
URL: http://article.gmane.org/gmane.network.openvpn.devel/10154

Signed-off-by: Gert Doering <gert@greenie.muc.de>
(cherry picked from commit 767e4c56becbfeea525e4695a810593f373883cd)

src/openvpn/ssl_verify_openssl.c		diff \| blob \| blame \| history
src/openvpn/ssl_verify_polarssl.c		diff \| blob \| blame \| history