projects / quassel.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw (from parent 1: d82f98b)
Merge pull request #111 from mamarley/nosslloopback
authorManuel Nickschas <sputnick@quassel-irc.org>
Wed, 11 Mar 2015 19:13:12 +0000 (20:13 +0100)
committerManuel Nickschas <sputnick@quassel-irc.org>
Wed, 11 Mar 2015 19:13:12 +0000 (20:13 +0100)
Don't require SSL for loopback connections with --require-ssl

src/common/main.cpp patch | blob | history
src/core/coreauthhandler.cpp patch | blob | history

diff --git a/src/common/main.cpp b/src/common/main.cpp
index 6847371..b13d3ee 100644 (file)
--- a/src/common/main.cpp
+++ b/src/common/main.cpp
@@ -169,7 +169,7 @@ int main(int argc, char **argv)
     cliParser->addSwitch("oidentd", 0, "Enable oidentd integration");
     cliParser->addOption("oidentd-conffile", 0, "Set path to oidentd configuration file", "file");
 #ifdef HAVE_SSL
-    cliParser->addSwitch("require-ssl", 0, "Require SSL for client connections");
+    cliParser->addSwitch("require-ssl", 0, "Require SSL for remote (non-loopback) client connections");
 #endif
     cliParser->addSwitch("enable-experimental-dcc", 0, "Enable highly experimental and unfinished support for CTCP DCC (DANGEROUS)");
 #endif
diff --git a/src/core/coreauthhandler.cpp b/src/core/coreauthhandler.cpp
index 75a2928..92b32c5 100644 (file)
--- a/src/core/coreauthhandler.cpp
+++ b/src/core/coreauthhandler.cpp
@@ -158,7 +158,7 @@ void CoreAuthHandler::handle(const RegisterClient &msg)
     else
         useSsl = _connectionFeatures & Protocol::Encryption;
 
-    if (Quassel::isOptionSet("require-ssl") && !useSsl) {
+    if (Quassel::isOptionSet("require-ssl") && !useSsl && !_peer->isLocal()) {
         _peer->dispatch(ClientDenied(tr("<b>SSL is required!</b><br>You need to use SSL in order to connect to this core.")));
         _peer->close();
         return;
Quassel IRC