diff options
| author | Alexander Barton <alex@barton.de> | 2024-01-05 22:23:53 +0100 |
|---|---|---|
| committer | Alexander Barton <alex@barton.de> | 2024-03-23 20:19:01 +0100 |
| commit | 0e176b557037b583f408229b518646804b33d745 (patch) | |
| tree | c7b64b1ad318cc71f4ccb19a17a14b9d06e6a655 | |
| parent | c8589e9890742c377c78595131ef1cdc8d784c66 (diff) | |
| download | ngircd-0e176b557037b583f408229b518646804b33d745.tar.gz ngircd-0e176b557037b583f408229b518646804b33d745.zip | |
S2S-TLS/GnuTLS: Update SSL code for GnuTLS certificate reloading
Without this, the S2S-TLS-Patch not even compiles with GnuTLS because
of the "new" GnuTLS certificate reload support implemented in commit
eead4a63 ("x509_cred_slot").
| -rw-r--r-- | src/ngircd/conn-ssl.c | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/src/ngircd/conn-ssl.c b/src/ngircd/conn-ssl.c index 50116288..cef580f8 100644 --- a/src/ngircd/conn-ssl.c +++ b/src/ngircd/conn-ssl.c @@ -468,6 +468,9 @@ ConnSSL_SetVerifyProperties_gnutls(void) if (!Conf_SSLOptions.CAFile) return true; + x509_cred_slot *slot = array_get(&x509_creds, sizeof(x509_cred_slot), x509_cred_idx); + gnutls_certificate_credentials_t x509_cred = slot->x509_cred; + err = gnutls_certificate_set_x509_trust_file(x509_cred, Conf_SSLOptions.CAFile, GNUTLS_X509_FMT_PEM); |