github
/
mosquitto
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Don't ask client for certificate when require_certificate is false.

Browse Source 
Thanks to Jan-Piet Mens.
pull/211/merge
Roger A. Light 11 years ago
parent c1ea95d2d4
commit d8a3ab7d56
2 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File

7
ChangeLog.txt
Unescape Escape View File

@ -1,3 +1,10 @@
1.3.4 - 20140802
================
Broker:
- Don't ask client for certificate when require_certificate is false.
1.3.3 - 20140801
================

2
src/net.c
Unescape Escape View File

@ -441,7 +441,7 @@ int mqtt3_socket_listen(struct _mqtt3_listener *listener)
if(listener->require_certificate){
SSL_CTX_set_verify(listener->ssl_ctx, SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT, client_certificate_verify);
}else{
SSL_CTX_set_verify(listener->ssl_ctx, SSL_VERIFY_PEER, client_certificate_verify);
SSL_CTX_set_verify(listener->ssl_ctx, SSL_VERIFY_NONE, client_certificate_verify);
}
rc = SSL_CTX_use_certificate_chain_file(listener->ssl_ctx, listener->certfile);
if(rc != 1){

Write Preview
Loading…
Cancel
Save