From 1ad46b5cd0fcac0d3224d37d555092258593eabd Mon Sep 17 00:00:00 2001
From: Roxie Linden <roxie@lindenlab.com>
Date: Mon, 24 May 2010 13:59:10 -0700
Subject: DEV-50173 - investigate certificate code performance DEV-50166 -
 LLBasicCertificateChain::validate calls in log Added caching of certificates
 that have been validated. The sha1 hash for the certificate is stored and is
 associated with the from and to times.  When the certificate is validated,
 the code determines whether the certificate has successfully been validated
 before by looking for it in the cache, and then checks the date of the cert. 
 If that is successful, the validation calls with success.

Otherwise, it proceeds to do a full validation of the certificate.
---
 indra/newview/llsecapi.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'indra/newview/llsecapi.cpp')

diff --git a/indra/newview/llsecapi.cpp b/indra/newview/llsecapi.cpp
index 1caeec5b04..9e636f38c0 100644
--- a/indra/newview/llsecapi.cpp
+++ b/indra/newview/llsecapi.cpp
@@ -124,7 +124,7 @@ int secapiSSLCertVerifyCallback(X509_STORE_CTX *ctx, void *param)
 		// we rely on libcurl to validate the hostname, as libcurl does more extensive validation
 		// leaving our hostname validation call mechanism for future additions with respect to
 		// OS native (Mac keyring, windows CAPI) validation.
-		chain->validate(VALIDATION_POLICY_SSL & (~VALIDATION_POLICY_HOSTNAME), store, validation_params);
+		store->validate(VALIDATION_POLICY_SSL & (~VALIDATION_POLICY_HOSTNAME), chain, validation_params);
 	}
 	catch (LLCertValidationTrustException& cert_exception)
 	{
-- 
cgit v1.2.3