From: Stefan Metzmacher Date: Mon, 7 Apr 2025 16:15:53 +0000 (+0200) Subject: s4:lib/tls: introduce tstream_tls_params_server_lpcfg() X-Git-Tag: tevent-0.17.0~258 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=6001ae6df29103721bfe546df503995c850c9df7;p=thirdparty%2Fsamba.git s4:lib/tls: introduce tstream_tls_params_server_lpcfg() Signed-off-by: Stefan Metzmacher Reviewed-by: Volker Lendecke --- diff --git a/source4/lib/tls/tls.h b/source4/lib/tls/tls.h index 059e2fbdeb1..e8c888509c5 100644 --- a/source4/lib/tls/tls.h +++ b/source4/lib/tls/tls.h @@ -81,6 +81,10 @@ NTSTATUS tstream_tls_params_server(TALLOC_CTX *mem_ctx, const char *dhp_file, const char *tls_priority, struct tstream_tls_params **_params); +NTSTATUS tstream_tls_params_server_lpcfg(TALLOC_CTX *mem_ctx, + const char *dns_host_name, + struct loadparm_context *lp_ctx, + struct tstream_tls_params **_params); bool tstream_tls_params_enabled(struct tstream_tls_params *params); const char *tstream_tls_params_peer_name( diff --git a/source4/lib/tls/tls_tstream.c b/source4/lib/tls/tls_tstream.c index 09dc464cbf8..dd0c2d244ad 100644 --- a/source4/lib/tls/tls_tstream.c +++ b/source4/lib/tls/tls_tstream.c @@ -1582,6 +1582,29 @@ NTSTATUS tstream_tls_params_server(TALLOC_CTX *mem_ctx, return NT_STATUS_OK; } +NTSTATUS tstream_tls_params_server_lpcfg(TALLOC_CTX *mem_ctx, + const char *dns_host_name, + struct loadparm_context *lp_ctx, + struct tstream_tls_params **_tlsp) +{ + TALLOC_CTX *frame = talloc_stackframe(); + NTSTATUS status; + + status = tstream_tls_params_server(mem_ctx, + dns_host_name, + lpcfg_tls_enabled(lp_ctx), + lpcfg_tls_keyfile(frame, lp_ctx), + lpcfg_tls_certfile(frame, lp_ctx), + lpcfg_tls_cafile(frame, lp_ctx), + lpcfg_tls_crlfile(frame, lp_ctx), + lpcfg_tls_dhpfile(frame, lp_ctx), + lpcfg_tls_priority(lp_ctx), + _tlsp); + + TALLOC_FREE(frame); + return status; +} + struct tstream_tls_accept_state { struct tstream_context *tls_stream; };