diff options
author | Sumit Bose <sbose@redhat.com> | 2016-03-24 20:42:12 +0100 |
---|---|---|
committer | Lukas Slebodnik <lslebodn@redhat.com> | 2016-06-09 11:58:12 +0200 |
commit | aa35995ef056aa8ae052a47c62c6750b7adf065e (patch) | |
tree | 4d277534d917751235da655881fdc878710b0d9d /src/responder | |
parent | 875c90d531e6869a92da4b515db729ffce7c4244 (diff) | |
download | sssd-aa35995ef056aa8ae052a47c62c6750b7adf065e.tar.gz sssd-aa35995ef056aa8ae052a47c62c6750b7adf065e.tar.xz sssd-aa35995ef056aa8ae052a47c62c6750b7adf065e.zip |
p11: add no_verification option
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Diffstat (limited to 'src/responder')
-rw-r--r-- | src/responder/ssh/sshsrv_cmd.c | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/src/responder/ssh/sshsrv_cmd.c b/src/responder/ssh/sshsrv_cmd.c index af385fde8..5954cec1b 100644 --- a/src/responder/ssh/sshsrv_cmd.c +++ b/src/responder/ssh/sshsrv_cmd.c @@ -798,7 +798,7 @@ static errno_t decode_and_add_base64_data(struct ssh_cmd_ctx *cmd_ctx, size_t d; TALLOC_CTX *tmp_ctx; char *cert_verification_opts; - bool do_ocsp = true; + struct cert_verify_opts *cert_verify_opts; if (el == NULL) { DEBUG(SSSDBG_TRACE_ALL, "Mssing element, nothing to do.\n"); @@ -826,7 +826,8 @@ static errno_t decode_and_add_base64_data(struct ssh_cmd_ctx *cmd_ctx, } if (cert_verification_opts != NULL) { - ret = parse_cert_verify_opts(cert_verification_opts, &do_ocsp); + ret = parse_cert_verify_opts(tmp_ctx, cert_verification_opts, + &cert_verify_opts); if (ret != EOK) { DEBUG(SSSDBG_FATAL_FAILURE, "Failed to parse verifiy option.\n"); @@ -836,7 +837,7 @@ static errno_t decode_and_add_base64_data(struct ssh_cmd_ctx *cmd_ctx, ret = cert_to_ssh_key(tmp_ctx, ssh_ctx->ca_db, el->values[d].data, el->values[d].length, - do_ocsp, &key, &key_len); + cert_verify_opts, &key, &key_len); if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "cert_to_ssh_key failed.\n"); return ret; |