Implement TrustOnFirstUse option and CRLs (GNU TLS) to allow for printing only

to trusted printers/servers (<rdar://problem/25711658>) This change also makes the default value of AllowExpiredCerts NO instead of YES. Finally, add support for loading most client.conf options (NOT ServerName or User) from /Library/Printers/org.cups.PrintingPrefs.plist on OS X.
author: Michael Sweet <michael.r.sweet@gmail.com> 2016-05-18 14:42:37 -0400
committer: Michael Sweet <michael.r.sweet@gmail.com> 2016-05-18 14:42:37 -0400
commit: 08d56b1fb9bb10d0cf7d20fd3d9eb763a8fb68a6 (patch)
tree: a4606f8bff1108d78c4c1f8afe491b95cb048599 /cups/cups-private.h
parent: 71d227bf28c2fb6c7c0210bb02dfb991434d4674 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/cups/cups-private.h b/cups/cups-private.h
index 134aa8b03..998aeec94 100644
--- a/cups/cups-private.h
+++ b/cups/cups-private.h
@@ -158,6 +158,7 @@ typedef struct _cups_globals_s		/**** CUPS global state data ****/
   void			*server_cert_data;
 					/* Server certificate user data */
   int			server_version,	/* Server IPP version */
+			trust_first,	/* Trust on first use? */
 			any_root,	/* Allow any (e.g., self-signed) root */
 			expired_certs,	/* Allow expired certs */
 			validate_certs;	/* Validate certificates */
author	Michael Sweet <michael.r.sweet@gmail.com>	2016-05-18 14:42:37 -0400
committer	Michael Sweet <michael.r.sweet@gmail.com>	2016-05-18 14:42:37 -0400
commit	08d56b1fb9bb10d0cf7d20fd3d9eb763a8fb68a6 (patch)
tree	a4606f8bff1108d78c4c1f8afe491b95cb048599 /cups/cups-private.h
parent	71d227bf28c2fb6c7c0210bb02dfb991434d4674 (diff)