Skip to content
Snippets Groups Projects
Commit 0390a171 authored by Howard Chu's avatar Howard Chu
Browse files

Changed default tls_opt_require_cert value to LDAP_OPT_X_TLS_DEMAND; force 

a fatal error when TLS server cert verification fails.

Changed ldap_pvt_tls_check_hostname to return LDAP_SUCCESS when no cert is
found: this can now only occur if tls_opt_require_cert was explicitly set
to NEVER or ALLOW.

In tls_verify_cb, added a text translation of the verification error code
to the debug message.
parent 9d39e1e6
Branches
Tags
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 14 additions and 2 deletions
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment