upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2026-02-15 08:37:48 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

ITS#10326 mbedtls: always call mbedtls_ssl_set_hostname()

Browse source 
Even if hostname is NULL, the library requires this be called once.
If non-NULL, mbedtls may do a hostname check which is redundant
since libldap does its own check.
This commit is contained in:
Howard Chu 2025-04-22 17:22:59 +01:00
parent 36dd6e2e62
commit 10456f5850
1 changed files with 3 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
libraries/libldap/tls_mt.c
View file

@ -380,11 +380,9 @@ static int
tlsmt_session_connect( LDAP *ld, tls_session *sess, const char *name_in )
{
tlsmt_session *s = (tlsmt_session *)sess;
if (name_in) {
int ret = mbedtls_ssl_set_hostname( &(s->ssl_ctx), name_in );
if ( ret != 0 ) {
return ret;
}
int ret = mbedtls_ssl_set_hostname( &(s->ssl_ctx), name_in );
if ( ret != 0 ) {
return ret;
}
return tlsmt_session_accept(sess);