summary |
shortlog |
log |
commit | commitdiff |
tree
raw |
patch |
inline | side by side (from parent 1:
e72b2c9)
BUG: https://bugzilla.samba.org/show_bug.cgi?id=11752
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Günther Deschner <gd@samba.org>
char *ca_file = lpcfg_tls_cafile(state, conn->lp_ctx);
char *crl_file = lpcfg_tls_crlfile(state, conn->lp_ctx);
const char *tls_priority = lpcfg_tls_priority(conn->lp_ctx);
char *ca_file = lpcfg_tls_cafile(state, conn->lp_ctx);
char *crl_file = lpcfg_tls_crlfile(state, conn->lp_ctx);
const char *tls_priority = lpcfg_tls_priority(conn->lp_ctx);
- if (!ca_file || !*ca_file) {
- composite_error(result,
- NT_STATUS_INVALID_PARAMETER_MIX);
- return result;
- }
+ enum tls_verify_peer_state verify_peer =
+ lpcfg_tls_verify_peer(conn->lp_ctx);
status = tstream_tls_params_client(state,
ca_file,
crl_file,
tls_priority,
status = tstream_tls_params_client(state,
ca_file,
crl_file,
tls_priority,
- TLS_VERIFY_PEER_NO_CHECK,
- NULL,
+ verify_peer,
+ conn->host,
&state->tls_params);
if (!NT_STATUS_IS_OK(status)) {
composite_error(result, status);
&state->tls_params);
if (!NT_STATUS_IS_OK(status)) {
composite_error(result, status);