From 97ca82984f7421fe9a93de29fa5f82bb9069b18b Mon Sep 17 00:00:00 2001
From: Arvid Norberg <arvid@libtorrent.org>
Date: Mon, 29 Aug 2011 02:05:37 +0000
Subject: [PATCH] ssl comment

---
 src/torrent.cpp | 8 +-------
 1 file changed, 1 insertion(+), 7 deletions(-)

diff --git a/src/torrent.cpp b/src/torrent.cpp
index 0419aca61..d28dd85e2 100644
--- a/src/torrent.cpp
+++ b/src/torrent.cpp
@@ -1312,6 +1312,7 @@ namespace libtorrent
 
 // this is used for debugging			
 /*
+#error there's a bug where the async_handshake on the ssl_stream always succeeds, regardless of the certificate failing. It's not a trivial bug in asio, that's been tested with a small repro program.
 			ctx->set_verify_callback(verify_function, ec);
 			if (ec)
 			{
@@ -1322,13 +1323,6 @@ namespace libtorrent
 */
 			SSL_CTX* ssl_ctx = ctx->impl();
 
-			// we don't want regular peers to be able to invite others
-			// by in turn signing new certificates. So, break the verification
-			// chain at depth 2. This is just a precaution in case the
-			// issuer of the peer certificates made a mistake and issued them
-			// as CA certs.
-			SSL_CTX_set_verify_depth(ssl_ctx, 0);
-
 			// create a new x.509 certificate store
 			X509_STORE* cert_store = X509_STORE_new();
 			if (!cert_store)