diff options
| -rw-r--r-- | NEWS | 1 | ||||
| -rw-r--r-- | plugins/sslutils.c | 3 |
2 files changed, 4 insertions, 0 deletions
| @@ -20,6 +20,7 @@ This file documents the major additions and syntax changes between releases. | |||
| 20 | Fix check_procs where regex input of '|' would get displayed in output - now replaced with ',' | 20 | Fix check_procs where regex input of '|' would get displayed in output - now replaced with ',' |
| 21 | Fix segfault in check_host when hostname returns multiple IP addresses (Sebastian Harl) | 21 | Fix segfault in check_host when hostname returns multiple IP addresses (Sebastian Harl) |
| 22 | Fix check_smtp and check_tcp where duplicate messages were displayed for certificate errors | 22 | Fix check_smtp and check_tcp where duplicate messages were displayed for certificate errors |
| 23 | Disable RFC4507 support, to work around SSL negotiation issues with (at least) some Tomcat versions | ||
| 23 | 24 | ||
| 24 | 1.4.15 27th July 2010 | 25 | 1.4.15 27th July 2010 |
| 25 | ENHANCEMENTS | 26 | ENHANCEMENTS |
diff --git a/plugins/sslutils.c b/plugins/sslutils.c index 0bc61ed..6e86dc6 100644 --- a/plugins/sslutils.c +++ b/plugins/sslutils.c | |||
| @@ -52,6 +52,9 @@ int np_net_ssl_init_with_hostname (int sd, char *host_name) { | |||
| 52 | printf ("%s\n", _("CRITICAL - Cannot create SSL context.")); | 52 | printf ("%s\n", _("CRITICAL - Cannot create SSL context.")); |
| 53 | return STATE_CRITICAL; | 53 | return STATE_CRITICAL; |
| 54 | } | 54 | } |
| 55 | #ifdef SSL_OP_NO_TICKET | ||
| 56 | SSL_CTX_set_options(c, SSL_OP_NO_TICKET); | ||
| 57 | #endif | ||
| 55 | if ((s = SSL_new (c)) != NULL){ | 58 | if ((s = SSL_new (c)) != NULL){ |
| 56 | #ifdef SSL_set_tlsext_host_name | 59 | #ifdef SSL_set_tlsext_host_name |
| 57 | if (host_name != NULL) | 60 | if (host_name != NULL) |