tyler.durden
/
icinga2
mirror of https://github.com/Icinga/icinga2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

ApiListener: fix self-made security hole

This commit is contained in:
Alexander A. Klimov 2019-02-19 17:38:09 +01:00
parent f9fff54da2
commit c46157d552
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
lib/remote/apilistener.cpp
View File

@ -531,13 +531,13 @@ void ApiListener::NewClientHandlerInternal(boost::asio::yield_context yc, const
sslConn.set_verify_mode(ssl::verify_peer | ssl::verify_client_once);
bool verify_ok = false;
bool verify_ok = true;
String verifyError;
sslConn.set_verify_callback([&verify_ok, &verifyError](bool preverified, ssl::verify_context& ctx) {
verify_ok = preverified;
if (!preverified) {
verify_ok = false;
std::ostringstream msgbuf;
int err = X509_STORE_CTX_get_error(ctx.native_handle());