diff options
| author | Jeremy Harris <jgh146exb@wizmail.org> | 2014-09-11 21:41:12 +0100 |
|---|---|---|
| committer | Jeremy Harris <jgh146exb@wizmail.org> | 2014-09-11 21:42:52 +0100 |
| commit | 3281c6ea0c270d7065608e47c915046c92f1dbf5 (patch) | |
| tree | 1a7ca5d6fb0ead59794355b1c007f809d36b3986 /src | |
| parent | e91ad4a760cbf58e1f455d2ba226d80aa6c2da05 (diff) | |
Add debug for number of CA certs, for OpenSSL/file load
Diffstat (limited to 'src')
| -rw-r--r-- | src/src/tls-openssl.c | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/src/src/tls-openssl.c b/src/src/tls-openssl.c index 9278874ca..7d9ab8b4d 100644 --- a/src/src/tls-openssl.c +++ b/src/src/tls-openssl.c @@ -1376,9 +1376,14 @@ if (expcerts != NULL && *expcerts != '\0') !SSL_CTX_load_verify_locations(sctx, CS file, CS dir)) return tls_error(US"SSL_CTX_load_verify_locations", host, NULL); + /* Load the list of CAs for which we will accept certs, for sending + to the client. XXX only for file source, not dir? */ if (file != NULL) { - SSL_CTX_set_client_CA_list(sctx, SSL_load_client_CA_file(CS file)); + STACK_OF(X509_NAME) * names = SSL_load_client_CA_file(CS file); +DEBUG(D_tls) debug_printf("Added %d certificate authorities.\n", + sk_X509_NAME_num(names)); + SSL_CTX_set_client_CA_list(sctx, names); } } |