diff options
| author | Vincent Richard <[email protected]> | 2009-06-21 21:32:25 +0000 |
|---|---|---|
| committer | Vincent Richard <[email protected]> | 2009-06-21 21:32:25 +0000 |
| commit | 3442caf607220db0910d0191b0a95c866bed9d10 (patch) | |
| tree | f6e1c47cb7f9fe060769efb633d9972e29427451 | |
| parent | Include hostname in message id (ensure unicity when working on a network file... (diff) | |
| download | vmime-3442caf607220db0910d0191b0a95c866bed9d10.tar.gz vmime-3442caf607220db0910d0191b0a95c866bed9d10.zip | |
gnutls_x509_crt_list_import does not support multiple DER certificates (Georg Sauthoff).
| -rw-r--r-- | src/net/tls/TLSSocket.cpp | 25 |
1 files changed, 12 insertions, 13 deletions
diff --git a/src/net/tls/TLSSocket.cpp b/src/net/tls/TLSSocket.cpp index 73af1da7..4f64967d 100644 --- a/src/net/tls/TLSSocket.cpp +++ b/src/net/tls/TLSSocket.cpp @@ -292,27 +292,26 @@ ref <security::cert::certificateChain> TLSSocket::getPeerCertificates() const // Try X.509 gnutls_x509_crt* x509Certs = new gnutls_x509_crt[certCount]; - unsigned int count = certCount; - - int res = gnutls_x509_crt_list_import - (x509Certs, &count, rawData, GNUTLS_X509_FMT_PEM, 0); - - if (res <= 0) + for (unsigned int i = 0; i < certCount; ++i) { - count = certCount; + gnutls_x509_crt_init(x509Certs + i); - res = gnutls_x509_crt_list_import - (x509Certs, &count, rawData, GNUTLS_X509_FMT_DER, 0); + int res = gnutls_x509_crt_import(x509Certs[i], rawData + i, + GNUTLS_X509_FMT_DER); + + if (res < 0) + { + // XXX more fine-grained error reporting? + delete [] x509Certs; + return NULL; + } } - if (res >= 1) { std::vector <ref <security::cert::certificate> > certs; bool error = false; - count = static_cast <unsigned int>(res); - - for (unsigned int i = 0 ; i < count ; ++i) + for (unsigned int i = 0 ; i < certCount ; ++i) { size_t dataSize = 0; |