Only check the certificate's host name if InsecureSkipVerify is not set.

2014-10-30 23:45:15 +01:00 · 2014-10-30 23:45:15 +01:00 · 1ff5be0d01
commit 1ff5be0d01
parent 7a8cf41551
1 changed files with 8 additions and 2 deletions
--- a/xmpp.go
+++ b/xmpp.go
@ -176,8 +176,14 @@ func (o Options) NewClient() (*Client, error) {
 		if strings.LastIndex(o.Host, ":") > 0 {
 			host = host[:strings.LastIndex(o.Host, ":")]
 		}
-		if err = tlsconn.VerifyHostname(host); err != nil {
+		insecureSkipVerify := DefaultConfig.InsecureSkipVerify
-			return nil, err
+		if o.TLSConfig != nil {
 			insecureSkipVerify = o.TLSConfig.InsecureSkipVerify
 		}
 		if !insecureSkipVerify {
 			if err = tlsconn.VerifyHostname(host); err != nil {
 				return nil, err
 			}
 		}
 		client.conn = tlsconn
 	}