ApiListener: fix self-made security hole

author Alexander A. Klimov <alexander.klimov@icinga.com>

Wed, 20 Feb 2019 15:07:41 +0000 (16:07 +0100)

committer Alexander A. Klimov <alexander.klimov@icinga.com>

Mon, 1 Apr 2019 11:31:16 +0000 (13:31 +0200)
author Alexander A. Klimov <alexander.klimov@icinga.com>
Wed, 20 Feb 2019 15:07:41 +0000 (16:07 +0100)
committer Alexander A. Klimov <alexander.klimov@icinga.com>
Mon, 1 Apr 2019 11:31:16 +0000 (13:31 +0200)
diff --git a/lib/remote/apilistener.cpp b/lib/remote/apilistener.cpp

index ebe18358b1cfd3e13a93011b05c4041f537e58b8..d56c532bf77d846ba6a44463871d0fbde60239c2 100644 (file)
--- a/lib/remote/apilistener.cpp
+++ b/lib/remote/apilistener.cpp
@@ -629,6 +629,8 @@ void ApiListener::NewClientHandlerInternal(boost::asio::yield_context yc, const
                         log << " (no Endpoint object found for identity)";
                 }
         } else {
+               verify_ok = false;
+
                 Log(LogInformation, "ApiListener")
                         << "New client connection " << conninfo << " (no client certificate)";
         }
author	Alexander A. Klimov <alexander.klimov@icinga.com>
	Wed, 20 Feb 2019 15:07:41 +0000 (16:07 +0100)
committer	Alexander A. Klimov <alexander.klimov@icinga.com>
	Mon, 1 Apr 2019 11:31:16 +0000 (13:31 +0200)