mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-06 10:46:21 +08:00
Code Issues Packages Projects Releases Wiki Activity

Assume TLS is properly configured if any one of

Browse Source 
keyfile, certfile, cacertfile, or cacertdir is
provided.  Note that TLS can be properly configured
without any of these when non-X.509 cipher suites
are used, so this might have be rethought.
This commit is contained in:
Kurt Zeilenga 2005-10-12 20:31:04 +00:00
parent e66b6188bb
commit 0ea43c9d7d
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
libraries/libldap/tls.c
View File

@ -206,8 +206,11 @@ ldap_pvt_tls_init_def_ctx( void )
#ifdef LDAP_R_COMPILE
ldap_pvt_thread_mutex_lock( &tls_def_ctx_mutex );
#endif
if (( !cacertfile && !cacertdir ) || !certfile || !keyfile )
if ( !certfile && !keyfile && !cacertfile && !cacertdir ) {
/* minimum configuration not provided */
return LDAP_NOT_SUPPORTED;
}
#ifdef HAVE_EBCDIC
/* This ASCII/EBCDIC handling is a real pain! */