- Andre Guibert de Bruet fixed the gnutls-using code: There are a few places

in the gnutls code where we were checking for negative values for errors, when the man pages state that GNUTLS_E_SUCCESS is returned on success and other values indicate error conditions.
author: Daniel Stenberg <daniel@haxx.se> 2009-03-08 22:52:05 +0000
committer: Daniel Stenberg <daniel@haxx.se> 2009-03-08 22:52:05 +0000
commit: 12bfcb501c82f7a0911a8ee92b5e8143225ce207 (patch)
tree: 77190cdb18cb6e1db036e45c0c71e627314e97a2 /lib/gtls.c
parent: 0fc1782dd45e7ae17313bfebd7a521f3e30cde60 (diff)
1 files changed, 6 insertions, 6 deletions
diff --git a/lib/gtls.c b/lib/gtls.c
index 839d28bc2..8bf754b92 100644
--- a/lib/gtls.c
+++ b/lib/gtls.c
@@ -277,7 +277,7 @@ Curl_gtls_connect(struct connectdata *conn,
 
   /* allocate a cred struct */
   rc = gnutls_certificate_allocate_credentials(&conn->ssl[sockindex].cred);
-  if(rc < 0) {
+  if(rc != GNUTLS_E_SUCCESS) {
     failf(data, "gnutls_cert_all_cred() failed: %s", gnutls_strerror(rc));
     return CURLE_SSL_CONNECT_ERROR;
   }
@@ -318,7 +318,7 @@ Curl_gtls_connect(struct connectdata *conn,
 
   /* Initialize TLS session as a client */
   rc = gnutls_init(&conn->ssl[sockindex].session, GNUTLS_CLIENT);
-  if(rc) {
+  if(rc != GNUTLS_E_SUCCESS) {
     failf(data, "gnutls_init() failed: %d", rc);
     return CURLE_SSL_CONNECT_ERROR;
   }
@@ -337,13 +337,13 @@ Curl_gtls_connect(struct connectdata *conn,
 
   /* Use default priorities */
   rc = gnutls_set_default_priority(session);
-  if(rc < 0)
+  if(rc != GNUTLS_E_SUCCESS)
     return CURLE_SSL_CONNECT_ERROR;
 
   if(data->set.ssl.version == CURL_SSLVERSION_SSLv3) {
     static const int protocol_priority[] = { GNUTLS_SSL3, 0 };
     gnutls_protocol_set_priority(session, protocol_priority);
-    if(rc < 0)
+    if(rc != GNUTLS_E_SUCCESS)
       return CURLE_SSL_CONNECT_ERROR;
   }
 
@@ -351,7 +351,7 @@ Curl_gtls_connect(struct connectdata *conn,
      is higher for types specified before others. After specifying the types
      you want, you must append a 0. */
   rc = gnutls_certificate_type_set_priority(session, cert_type_priority);
-  if(rc < 0)
+  if(rc != GNUTLS_E_SUCCESS)
     return CURLE_SSL_CONNECT_ERROR;
 
   if(data->set.str[STRING_CERT]) {
@@ -360,7 +360,7 @@ Curl_gtls_connect(struct connectdata *conn,
           data->set.str[STRING_CERT],
           data->set.str[STRING_KEY] ?
           data->set.str[STRING_KEY] : data->set.str[STRING_CERT],
-          do_file_type(data->set.str[STRING_CERT_TYPE]) ) ) {
+          do_file_type(data->set.str[STRING_CERT_TYPE]) ) != GNUTLS_E_SUCCESS) {
       failf(data, "error reading X.509 key or certificate file");
       return CURLE_SSL_CONNECT_ERROR;
     }
author	Daniel Stenberg <daniel@haxx.se>	2009-03-08 22:52:05 +0000
committer	Daniel Stenberg <daniel@haxx.se>	2009-03-08 22:52:05 +0000
commit	12bfcb501c82f7a0911a8ee92b5e8143225ce207 (patch)
tree	77190cdb18cb6e1db036e45c0c71e627314e97a2 /lib/gtls.c
parent	0fc1782dd45e7ae17313bfebd7a521f3e30cde60 (diff)