moparisthebest/curl
1
0
Fork 0
mirror of https://github.com/moparisthebest/curl synced 2024-12-21 23:58:49 -05:00
Code Issues Releases Wiki Activity

bail out with error if someone tries to use another cert than PEM with OpenLDAP.

Browse Source
This commit is contained in:
Gunter Knauf 2007-08-25 12:10:30 +00:00
parent 870842ccee
commit 327c0d6b1c
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
lib/ldap.c
View File

@ -216,6 +216,12 @@ CURLcode Curl_ldap(struct connectdata *conn, bool *done)
#elif defined(LDAP_OPT_X_TLS) #elif defined(LDAP_OPT_X_TLS)
if (data->set.ssl.verifypeer) { if (data->set.ssl.verifypeer) {
/* OpenLDAP SDK supports BASE64 files. */ /* OpenLDAP SDK supports BASE64 files. */
if ((data->set.str[STRING_CERT_TYPE]) &&
(!strequal(data->set.str[STRING_CERT_TYPE], "PEM"))) {
failf(data, "LDAP local: ERROR OpenLDAP does only support PEM cert-type!");
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
if (!ldap_ca) { if (!ldap_ca) {
failf(data, "LDAP local: ERROR PEM CA cert not set!"); failf(data, "LDAP local: ERROR PEM CA cert not set!");
status = CURLE_SSL_CERTPROBLEM; status = CURLE_SSL_CERTPROBLEM;