git Service of IN-Ulm e.V. Explore Help
Sign In
cbiedl
/
ngircd
1
0
Fork 0
Files
Tree: 3c49df9f56
Branches Tags
ngircd
/
debian
/
patches
/
0012-S2S-TLS-GnuTLS-Update-SSL-code-for-GnuTLS-certificat.patch

0012-S2S-TLS-GnuTLS-Update-SSL-code-for-GnuTLS-certificat.patch 952 B
History Raw

123456789101112131415161718192021222324252627 
  1. From 8676c743246aaebe6d45f0978812c154ecfa25dd Mon Sep 17 00:00:00 2001
    2. 

  2. From: Alexander Barton <alex@barton.de>
    3. 

  3. Date: Fri, 5 Jan 2024 22:23:53 +0100
    4. 

  4. Subject: [PATCH 12/20] S2S-TLS/GnuTLS: Update SSL code for GnuTLS certificate
    5. 

  5.  reloading
    6. 

  6. 

  7. Without this, the S2S-TLS-Patch not even compiles with GnuTLS because
    8. 

  8. of the "new" GnuTLS certificate reload support implemented in commit
    9. 

  9. eead4a63 ("x509_cred_slot").
    10. 

  10. 

  11. (cherry picked from commit 0e176b557037b583f408229b518646804b33d745)
    12. 

  12. ---
    13. 

  13.  src/ngircd/conn-ssl.c | 3 +++
    14. 

  14.  1 file changed, 3 insertions(+)
    15. 

  15. 

  16. --- a/src/ngircd/conn-ssl.c
    17. 

  17. +++ b/src/ngircd/conn-ssl.c
    18. 

  18. @@ -468,6 +468,9 @@
    19. 

  19.  	if (!Conf_SSLOptions.CAFile)
    20. 

  20.  		return true;
    21. 

  21.  
    22. 

  22. +	x509_cred_slot *slot = array_get(&x509_creds, sizeof(x509_cred_slot), x509_cred_idx);
    23. 

  23. +	gnutls_certificate_credentials_t x509_cred = slot->x509_cred;
    24. 

  24. +
    25. 

  25.  	err = gnutls_certificate_set_x509_trust_file(x509_cred,
    26. 

  26.  						     Conf_SSLOptions.CAFile,
    27. 

  27.  						     GNUTLS_X509_FMT_PEM);
    28.