- Added CRL revocation support to x509parse_verify()

- Fixed an off-by-one allocation in ssl_set_hostname() - Added CRL support to SSL/TLS code
2009-05-03 10:18:48 +00:00 · 2009-05-03 10:18:48 +00:00 · 40ea7de46d
commit 40ea7de46d
parent 7d06ad2b52
9 changed files with 133 additions and 27 deletions
--- a/programs/ssl/ssl_server.c
+++ b/programs/ssl/ssl_server.c
@ -286,7 +286,7 @@ accept:

    memset( &ssn, 0, sizeof( ssl_session ) );

-    ssl_set_ca_chain( &ssl, srvcert.next, NULL );
+    ssl_set_ca_chain( &ssl, srvcert.next, NULL, NULL );
    ssl_set_own_cert( &ssl, &srvcert, &rsa );
    ssl_set_dh_param( &ssl, my_dhm_P, my_dhm_G );