Browse code
Added warning that --capath is not available with PolarSSL
Signed-off-by: Adriaan de Jong <dejong@fox-it.com>
Acked-by: James Yonan <james@openvpn.net>
Acked-by: Gert Doering <gert@greenie.muc.de>
Signed-off-by: David Sommerseth <davids@redhat.com>
Adriaan de Jong authored on 2011/07/05 17:05:32Showing 2 changed files
| ... | ... |
@@ -3952,6 +3952,7 @@ they are distributed with OpenVPN, they are totally insecure. |
| 3952 | 3952 |
.B \-\-capath dir |
| 3953 | 3953 |
Directory containing trusted certificates (CAs and CRLs). |
| 3954 | 3954 |
Available with OpenSSL version >= 0.9.7 dev. |
| 3955 |
+Not available with PolarSSL. |
|
| 3955 | 3956 |
.\"********************************************************* |
| 3956 | 3957 |
.TP |
| 3957 | 3958 |
.B \-\-dh file |
| ... | ... |
@@ -2281,6 +2281,8 @@ options_postprocess_verify_ce (const struct options *options, const struct conne |
| 2281 | 2281 |
#ifdef USE_POLARSSL |
| 2282 | 2282 |
if (!(options->ca_file)) |
| 2283 | 2283 |
msg(M_USAGE, "You must define CA file (--ca)"); |
| 2284 |
+ if (options->ca_path) |
|
| 2285 |
+ msg(M_USAGE, "Parameter --capath cannot be used with the PolarSSL version version of OpenVPN."); |
|
| 2284 | 2286 |
#else |
| 2285 | 2287 |
if ((!(options->ca_file)) && (!(options->ca_path))) |
| 2286 | 2288 |
msg(M_USAGE, "You must define CA file (--ca) or CA path (--capath)"); |