mirror of https://github.com/openwrt/packages.git
openconnect: when serverhash or cafile are present, set --no-system-trust
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>pull/578/head
Nikos Mavrogiannopoulos
parent
be753f0208
commit
05999937ed
|
|
@ -38,10 +38,10 @@ proto_openconnect_setup() {
|
|||
|
||||
cmdline="$server$port -i vpn-$config --non-inter --syslog --script /lib/netifd/vpnc-script"
|
||||
|
||||
[ -f /etc/openconnect/ca-vpn-$config.pem ] && append cmdline "--cafile /etc/openconnect/ca-vpn-$config.pem"
|
||||
[ -f /etc/openconnect/ca-vpn-$config.pem ] && append cmdline "--no-system-trust --cafile /etc/openconnect/ca-vpn-$config.pem"
|
||||
[ -f /etc/openconnect/user-cert-vpn-$config.pem ] && append cmdline "-c /etc/openconnect/user-cert-vpn-$config.pem"
|
||||
[ -f /etc/openconnect/user-key-vpn-$config.pem ] && append cmdline "--sslkey /etc/openconnect/user-key-vpn-$config.pem"
|
||||
[ -n "$serverhash" ] && append cmdline "--servercert=$serverhash"
|
||||
[ -n "$serverhash" ] && append cmdline "--no-system-trust --servercert=$serverhash"
|
||||
[ -n "$authgroup" ] && append cmdline "--authgroup $authgroup"
|
||||
[ -n "$username" ] && append cmdline "-u $username"
|
||||
[ -n "$password" ] && {
|
||||
|
|
|
|||
Loading…
Reference in New Issue