StreamDriver.TlsVerifyDepth

Specifies the maximum depth allowed for certificate chain verification.

This parameter applies to imtcp: TCP Syslog Input Module.

Name:

StreamDriver.TlsVerifyDepth

Scope:

module, input

Type:

integer

Default:

module=TLS library default, input=module parameter

Required?:

no

Introduced:

at least 5.x, possibly earlier

Description

Specifies the allowed maximum depth for the certificate chain verification. Support added in v8.2001.0, supported by GTLS and OpenSSL driver. If not set, the API default will be used. For OpenSSL, the default is 100 - see the doc for more: https://docs.openssl.org/1.1.1/man3/SSL_CTX_set_verify/ For GnuTLS, the default is 5 - see the doc for more: https://www.gnutls.org/manual/gnutls.html

The same-named input parameter can override this module setting.

Module usage

module(load="imtcp" streamDriver.tlsVerifyDepth="7")

Input usage

input(type="imtcp" port="514" streamDriver.tlsVerifyDepth="7")

See also

See also imtcp: TCP Syslog Input Module.

---

Support: rsyslog Assistant | GitHub Discussions | GitHub Issues: rsyslog source project

Contributing: Source & docs: rsyslog source project

© 2008–2025 Rainer Gerhards and others. Licensed under the Apache License 2.0.