upstream/icinga2
1
0
Fork 0
mirror of https://github.com/Icinga/icinga2.git synced 2026-05-28 04:12:13 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

ApiListener: fix self-made security hole

Browse source
This commit is contained in:
Alexander A. Klimov 2019-02-19 17:38:09 +01:00
parent f9fff54da2
commit c46157d552
1 changed files with 3 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
lib/remote/apilistener.cpp
View file

@ -531,13 +531,13 @@ void ApiListener::NewClientHandlerInternal(boost::asio::yield_context yc, const
sslConn.set_verify_mode(ssl::verify_peer | ssl::verify_client_once);
bool verify_ok = false;
bool verify_ok = true;
String verifyError;
sslConn.set_verify_callback([&verify_ok, &verifyError](bool preverified, ssl::verify_context& ctx) {
verify_ok = preverified;
if (!preverified) {
verify_ok = false;
std::ostringstream msgbuf;
int err = X509_STORE_CTX_get_error(ctx.native_handle());