sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-11 05:18:09 +03:00
Code

s4:lib/tls: ignore non-existing ca and crl files in tstream_tls_params_client()

Browse Source 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Jeremy Allison <jra@samba.org>
This commit is contained in:
Stefan Metzmacher 2015-06-19 13:30:10 +02:00 committed by Jeremy Allison
parent 3d298b994d
commit 6f2c29a13c
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
source4/lib/tls/tls_tstream.c
View File

@ -919,7 +919,7 @@ NTSTATUS tstream_tls_params_client(TALLOC_CTX *mem_ctx,
return NT_STATUS_NO_MEMORY; return NT_STATUS_NO_MEMORY;
} }
if (ca_file && *ca_file) { if (ca_file && *ca_file && file_exist(ca_file)) {
ret = gnutls_certificate_set_x509_trust_file(tlsp->x509_cred, ret = gnutls_certificate_set_x509_trust_file(tlsp->x509_cred,
ca_file, ca_file,
GNUTLS_X509_FMT_PEM); GNUTLS_X509_FMT_PEM);
@ -931,7 +931,7 @@ NTSTATUS tstream_tls_params_client(TALLOC_CTX *mem_ctx,
} }
} }
if (crl_file && *crl_file) { if (crl_file && *crl_file && file_exist(crl_file)) {
ret = gnutls_certificate_set_x509_crl_file(tlsp->x509_cred, ret = gnutls_certificate_set_x509_crl_file(tlsp->x509_cred,
crl_file, crl_file,
GNUTLS_X509_FMT_PEM); GNUTLS_X509_FMT_PEM);