1 /** \file starttls.c - collect common TLS functionality
2 * \author Matthias Andree
14 /** return true if user allowed opportunistic STARTTLS/STLS */
15 int maybe_starttls(struct query *ctl) {
17 /* opportunistic or forced TLS */
18 return (!ctl->sslproto || strlen(ctl->sslproto))
26 /** return true if user requires STARTTLS/STLS, note though that this
27 * code must always use a logical AND with maybe_tls(). */
28 int must_starttls(struct query *ctl) {
30 return maybe_starttls(ctl)
31 && (ctl->sslfingerprint || ctl->sslcertck
32 || (ctl->sslproto && ctl->sslproto[0]));