Home Esplora Aiuto
Accedi
LBP
/
nagios-plugins
mirror da https://github.com/nagios-plugins/nagios-plugins.git
4
0
Forka 0
File Problemi 0 Wiki
Sfoglia il codice sorgente

Merge pull request #471 from arekm/master

Add support for SNI in check_smtp.
Sebastian Wolf 6 anni fa
parent
13eeb35b6f 7e4af791f7
commit
43c96e1273
2 ha cambiato i file con 18 aggiunte e 4 eliminazioni
Visualizzazione separata Mostra Diff Stats
  1. 1 2
      README
  2. 17 2
      plugins/check_smtp.c

+ 1 - 2
README
Vedi File 

@@ -2,8 +2,7 @@ Nagios Plugins
 
 ==============
 
 
 * For instructions on installing these plugins for use with Nagios,
 
-  see below.  In addition, generic instructions for the GNU toolchain can be
 
-  found in the `INSTALL` file.
 
+  see below.
 
 
 * For major changes between releases, read the `NEWS` file.

+ 17 - 2
plugins/check_smtp.c
Vedi File 

@@ -107,6 +107,7 @@ double critical_time = 0;
 
 int check_critical_time = FALSE;
 
 int verbose = 0;
 
 int use_ssl = FALSE;
 
+int use_sni = FALSE;
 
 short use_proxy_prefix = FALSE;
 
 short use_ehlo = FALSE;
 
 short use_lhlo = FALSE;
 
@@ -259,7 +260,7 @@ main (int argc, char **argv)
 
 		    smtp_quit();
 
 		    return STATE_UNKNOWN;
 
 		  }
 
-		  result = np_net_ssl_init(sd);
 
+		  result = np_net_ssl_init_with_hostname(sd, (use_sni ? server_address : NULL));
 
 		  if(result != STATE_OK) {
 
 		    printf (_("CRITICAL - Cannot create SSL context.\n"));
 
 		    close(sd);
 
@@ -469,6 +470,10 @@ process_arguments (int argc, char **argv)
 
 	int c;
 
 	char* temp;
 
 
+	enum {
 
+	  SNI_OPTION
 
+	};
 
+
 
 	int option = 0;
 
 	static struct option longopts[] = {
 
 		{"hostname", required_argument, 0, 'H'},
 
@@ -491,6 +496,7 @@ process_arguments (int argc, char **argv)
 
 		{"help", no_argument, 0, 'h'},
 
 		{"lmtp", no_argument, 0, 'L'},
 
 		{"starttls",no_argument,0,'S'},
 
+		{"sni", no_argument, 0, SNI_OPTION},
 
 		{"certificate",required_argument,0,'D'},
 
 		{"ignore-quit-failure",no_argument,0,'q'},
 
 		{"proxy",no_argument,0,'r'},
 
@@ -632,6 +638,13 @@ process_arguments (int argc, char **argv)
 
 			use_ssl = TRUE;
 
 			use_ehlo = TRUE;
 
 			break;
 
+		case SNI_OPTION:
 
+#ifdef HAVE_SSL
 
+			use_sni = TRUE;
 
+#else
 
+			usage (_("SSL support not available - install OpenSSL and recompile"));
 
+#endif
 
+      break;
 
 		case 'r':
 
 			use_proxy_prefix = TRUE;
 
 			break;
 
@@ -840,6 +853,8 @@ print_help (void)
 
   printf ("    %s\n", _("Minimum number of days a certificate has to be valid."));
 
   printf (" %s\n", "-S, --starttls");
 
   printf ("    %s\n", _("Use STARTTLS for the connection."));
 
+  printf (" %s\n", "--sni");
 
+  printf ("    %s\n", _("Enable SSL/TLS hostname extension support (SNI)"));
 
 #endif
 
 
 	printf (" %s\n", "-A, --authtype=STRING");
 
@@ -876,6 +891,6 @@ print_usage (void)
 
   printf ("%s\n", _("Usage:"));
 
   printf ("%s -H host [-p port] [-4|-6] [-e expect] [-C command] [-R response] [-f from addr]\n", progname);
 
   printf ("[-A authtype -U authuser -P authpass] [-w warn] [-c crit] [-t timeout] [-q]\n");
 
-  printf ("[-F fqdn] [-S] [-L] [-D warn days cert expire[,crit days cert expire]] [-v] \n");
 
+  printf ("[-F fqdn] [-S] [-L] [-D warn days cert expire[,crit days cert expire]] [--sni] [-v] \n");
 
 }