d0kuhn/mosquitto
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Ensure that bridges verify certificates by default when using TLS.

Browse Source 
Thanks to Stefan Borsje.
This commit is contained in:
Roger Light 2014-05-08 22:48:13 +01:00
parent 2669979502
commit b8e34b0b05
2 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
ChangeLog.txt
View File

@ -1,3 +1,9 @@
1.3.2 - 2014xxxx
================
Broker:
- Ensure that bridges verify certificates by default when using TLS.
1.3.1 - 20140324 1.3.1 - 20140324
================ ================

1
src/bridge.c
View File

@ -122,6 +122,7 @@ int mqtt3_bridge_new(struct mosquitto_db *db, struct _mqtt3_bridge *bridge)
new_context->tls_capath = new_context->bridge->tls_capath; new_context->tls_capath = new_context->bridge->tls_capath;
new_context->tls_certfile = new_context->bridge->tls_certfile; new_context->tls_certfile = new_context->bridge->tls_certfile;
new_context->tls_keyfile = new_context->bridge->tls_keyfile; new_context->tls_keyfile = new_context->bridge->tls_keyfile;
new_context->tls_cert_reqs = SSL_VERIFY_PEER;
new_context->tls_version = new_context->bridge->tls_version; new_context->tls_version = new_context->bridge->tls_version;
new_context->tls_insecure = new_context->bridge->tls_insecure; new_context->tls_insecure = new_context->bridge->tls_insecure;
#ifdef REAL_WITH_TLS_PSK #ifdef REAL_WITH_TLS_PSK