From: Nick Porter <nick@portercomputing.co.uk>
Date: Mon, 2 Dec 2024 08:34:09 +0000 (+0000)
Subject: TLS virtual-server option is part of tls config, not eap method
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=cc1230af1c39e3298dba464f0cd7a952d96d2269;p=thirdparty%2Ffreeradius-server.git

TLS virtual-server option is part of tls config, not eap method
---

diff --git a/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c b/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c
index 2259cc5d2b9..898b4e23acb 100644
--- a/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c
+++ b/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.c
@@ -47,7 +47,6 @@ static conf_parser_t submodule_config[] = {
 
 	{ FR_CONF_OFFSET("require_client_cert", rlm_eap_tls_t, req_client_cert), .dflt = "yes" },
 	{ FR_CONF_OFFSET("include_length", rlm_eap_tls_t, include_length), .dflt = "yes" },
-	{ FR_CONF_OFFSET("virtual_server", rlm_eap_tls_t, virtual_server) },
 	CONF_PARSER_TERMINATOR
 };
 
@@ -262,11 +261,6 @@ static int mod_instantiate(module_inst_ctx_t const *mctx)
 		return -1;
 	}
 
-	if (inst->virtual_server && !virtual_server_find(inst->virtual_server)) {
-		cf_log_err_by_child(conf, "virtual_server", "Unknown virtual server '%s'", inst->virtual_server);
-		return -1;
-	}
-
 	return 0;
 }
 
diff --git a/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.h b/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.h
index 735057bf568..65178c276b5 100644
--- a/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.h
+++ b/src/modules/rlm_eap/types/rlm_eap_tls/rlm_eap_tls.h
@@ -49,6 +49,4 @@ typedef struct {
 							//!< not mandatory, and there are some situations
 							//!< where it's useful to allow client access without
 							//!< a certificate.
-
-	char const		*virtual_server;	//!< Virtual server used for validating certificates.
 } rlm_eap_tls_t;