kissbac
/
packages
Obserwuj 1
Gwiazdka 0
Forkuj 0
Kod Problemy 0 Pull Requests 0 Wydania 0 Wiki Aktywność
Przeglądaj źródła

openconnect: when serverhash or cafile are present, set --no-system-trust 

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Nikos Mavrogiannopoulos 10 lat temu
rodzic
be753f0208
commit
05999937ed
1 zmienionych plików z 2 dodań i 2 usunięć
Widok podzielony Pokaż statystyki zmian
  1. 2
    2
      net/openconnect/files/openconnect.sh

+ 2
- 2
net/openconnect/files/openconnect.sh Wyświetl plik 

@@ -38,10 +38,10 @@ proto_openconnect_setup() {
38 38
39 39 
 	cmdline="$server$port -i vpn-$config --non-inter --syslog --script /lib/netifd/vpnc-script"
40 40
41 
-	[ -f /etc/openconnect/ca-vpn-$config.pem ] && append cmdline "--cafile /etc/openconnect/ca-vpn-$config.pem"
41 
+	[ -f /etc/openconnect/ca-vpn-$config.pem ] && append cmdline "--no-system-trust --cafile /etc/openconnect/ca-vpn-$config.pem"
42 42 
 	[ -f /etc/openconnect/user-cert-vpn-$config.pem ] && append cmdline "-c /etc/openconnect/user-cert-vpn-$config.pem"
43 43 
 	[ -f /etc/openconnect/user-key-vpn-$config.pem ] && append cmdline "--sslkey /etc/openconnect/user-key-vpn-$config.pem"
44 
-	[ -n "$serverhash" ] && append cmdline "--servercert=$serverhash"
44 
+	[ -n "$serverhash" ] && append cmdline "--no-system-trust --servercert=$serverhash"
45 45 
 	[ -n "$authgroup" ] && append cmdline "--authgroup $authgroup"
46 46 
 	[ -n "$username" ] && append cmdline "-u $username"
47 47 
 	[ -n "$password" ] && {