mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-06 10:46:21 +08:00
Code Issues Packages Projects Releases Wiki Activity

Change default to SSL_PEER_NONE (don't require peer certificate).

Browse Source
This commit is contained in:
Kurt Zeilenga 2000-09-01 23:24:17 +00:00
parent 57ed8f6458
commit 5518aefda0
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
libraries/libldap/tls.c
View File

@ -199,9 +199,11 @@ ldap_pvt_tls_init_def_ctx( void )
if ( tls_opt_trace ) { if ( tls_opt_trace ) {
SSL_CTX_set_info_callback( tls_def_ctx, tls_info_cb ); SSL_CTX_set_info_callback( tls_def_ctx, tls_info_cb );
} }
SSL_CTX_set_verify( tls_def_ctx, (tls_opt_require_cert) ? SSL_CTX_set_verify( tls_def_ctx,
tls_opt_require_cert ?
(SSL_VERIFY_PEER|SSL_VERIFY_FAIL_IF_NO_PEER_CERT) : (SSL_VERIFY_PEER|SSL_VERIFY_FAIL_IF_NO_PEER_CERT) :
SSL_VERIFY_PEER, tls_verify_cb ); SSL_VERIFY_NONE,
tls_verify_cb );
SSL_CTX_set_tmp_rsa_callback( tls_def_ctx, tls_tmp_rsa_cb ); SSL_CTX_set_tmp_rsa_callback( tls_def_ctx, tls_tmp_rsa_cb );
/* SSL_CTX_set_tmp_dh_callback( tls_def_ctx, tls_tmp_dh_cb ); */ /* SSL_CTX_set_tmp_dh_callback( tls_def_ctx, tls_tmp_dh_cb ); */
} }