1 files changed, 28 insertions, 0 deletions
diff --git a/OpenSim/Framework/Servers/BaseOpenSimServer.cs b/OpenSim/Framework/Servers/BaseOpenSimServer.cs
index 81dd357..f832f81 100644
--- a/OpenSim/Framework/Servers/BaseOpenSimServer.cs
+++ b/OpenSim/Framework/Servers/BaseOpenSimServer.cs
@@ -33,6 +33,9 @@ using System.Text;
 using System.Text.RegularExpressions;
 using System.Threading;
 using System.Timers;
+using System.Net;
+using System.Net.Security;
+using System.Security.Cryptography.X509Certificates;
 using log4net;
 using log4net.Appender;
 using log4net.Core;
@@ -86,6 +89,26 @@ namespace OpenSim.Framework.Servers
            m_osSecret = UUID.Random().ToString();
        }
+        private static bool m_NoVerifyCertChain = false;
+        private static bool m_NoVerifyCertHostname = false;
+        public static bool ValidateServerCertificate(
+            object sender,
+            X509Certificate certificate,
+            X509Chain chain,
+            SslPolicyErrors sslPolicyErrors)
+        {
+            if (m_NoVerifyCertChain)
+                sslPolicyErrors &= ~SslPolicyErrors.RemoteCertificateChainErrors;
+ 
+            if (m_NoVerifyCertHostname)
+                sslPolicyErrors &= ~SslPolicyErrors.RemoteCertificateNameMismatch;
+            if (sslPolicyErrors == SslPolicyErrors.None)
+                return true;
+            return false;
+        }             
        /// <summary>
        /// Must be overriden by child classes for their own server specific startup behaviour.
        /// </summary>
@@ -96,6 +119,11 @@ namespace OpenSim.Framework.Servers
            RegisterCommonComponents(Config);
            IConfig startupConfig = Config.Configs["Startup"];
+            m_NoVerifyCertChain = startupConfig.GetBoolean("NoVerifyCertChain", m_NoVerifyCertChain);
+            m_NoVerifyCertHostname = startupConfig.GetBoolean("NoVerifyCertHostname", m_NoVerifyCertHostname);
+            ServicePointManager.ServerCertificateValidationCallback = ValidateServerCertificate;
            int logShowStatsSeconds = startupConfig.GetInt("LogShowStatsSeconds", m_periodDiagnosticTimerMS / 1000);
            m_periodDiagnosticTimerMS = logShowStatsSeconds * 1000;
            m_periodicDiagnosticsTimer.Elapsed += new ElapsedEventHandler(LogDiagnostics);

diff --git a/OpenSim/Framework/Servers/BaseOpenSimServer.cs b/OpenSim/Framework/Servers/BaseOpenSimServer.cs index 81dd357..f832f81 100644 --- a/OpenSim/Framework/Servers/BaseOpenSimServer.cs +++ b/OpenSim/Framework/Servers/BaseOpenSimServer.cs
@@ -33,6 +33,9 @@ using System.Text;
33	using System.Text.RegularExpressions;	33	using System.Text.RegularExpressions;
34	using System.Threading;	34	using System.Threading;
35	using System.Timers;	35	using System.Timers;
		36	using System.Net;
		37	using System.Net.Security;
		38	using System.Security.Cryptography.X509Certificates;
36	using log4net;	39	using log4net;
37	using log4net.Appender;	40	using log4net.Appender;
38	using log4net.Core;	41	using log4net.Core;
@@ -86,6 +89,26 @@ namespace OpenSim.Framework.Servers
86	m_osSecret = UUID.Random().ToString();	89	m_osSecret = UUID.Random().ToString();
87	}	90	}
88		91
		92	private static bool m_NoVerifyCertChain = false;
		93	private static bool m_NoVerifyCertHostname = false;
		94
		95	public static bool ValidateServerCertificate(
		96	object sender,
		97	X509Certificate certificate,
		98	X509Chain chain,
		99	SslPolicyErrors sslPolicyErrors)
		100	{
		101	if (m_NoVerifyCertChain)
		102	sslPolicyErrors &= ~SslPolicyErrors.RemoteCertificateChainErrors;
		103
		104	if (m_NoVerifyCertHostname)
		105	sslPolicyErrors &= ~SslPolicyErrors.RemoteCertificateNameMismatch;
		106
		107	if (sslPolicyErrors == SslPolicyErrors.None)
		108	return true;
		109
		110	return false;
		111	}
89	/// <summary>	112	/// <summary>
90	/// Must be overriden by child classes for their own server specific startup behaviour.	113	/// Must be overriden by child classes for their own server specific startup behaviour.
91	/// </summary>	114	/// </summary>
@@ -96,6 +119,11 @@ namespace OpenSim.Framework.Servers
96	RegisterCommonComponents(Config);	119	RegisterCommonComponents(Config);
97		120
98	IConfig startupConfig = Config.Configs["Startup"];	121	IConfig startupConfig = Config.Configs["Startup"];
		122
		123	m_NoVerifyCertChain = startupConfig.GetBoolean("NoVerifyCertChain", m_NoVerifyCertChain);
		124	m_NoVerifyCertHostname = startupConfig.GetBoolean("NoVerifyCertHostname", m_NoVerifyCertHostname);
		125	ServicePointManager.ServerCertificateValidationCallback = ValidateServerCertificate;
		126
99	int logShowStatsSeconds = startupConfig.GetInt("LogShowStatsSeconds", m_periodDiagnosticTimerMS / 1000);	127	int logShowStatsSeconds = startupConfig.GetInt("LogShowStatsSeconds", m_periodDiagnosticTimerMS / 1000);
100	m_periodDiagnosticTimerMS = logShowStatsSeconds * 1000;	128	m_periodDiagnosticTimerMS = logShowStatsSeconds * 1000;
101	m_periodicDiagnosticsTimer.Elapsed += new ElapsedEventHandler(LogDiagnostics);	129	m_periodicDiagnosticsTimer.Elapsed += new ElapsedEventHandler(LogDiagnostics);