diff options
| author | Daniel Stenberg <daniel@haxx.se> | 2008-06-06 18:40:21 +0000 |
|---|---|---|
| committer | Daniel Stenberg <daniel@haxx.se> | 2008-06-06 18:40:21 +0000 |
| commit | 3fe8251dfbb533803e25cc38365114b28c5a1c85 (patch) | |
| tree | f6023109232d4fd990d5c2a4bcc4479e55367ee3 /lib/gtls.c | |
| parent | 930a45e7a93c964ec224bdddb59f97479b7e4a5d (diff) | |
- Axel Tillequin and Arnaud Ebalard added support for CURLOPT_CRLFILE, for
OpenSSL, NSS and GnuTLS-built libcurls.
Diffstat (limited to 'lib/gtls.c')
| -rw-r--r-- | lib/gtls.c | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/lib/gtls.c b/lib/gtls.c index 80100b4ed..e9e410243 100644 --- a/lib/gtls.c +++ b/lib/gtls.c @@ -271,6 +271,21 @@ Curl_gtls_connect(struct connectdata *conn, rc, data->set.ssl.CAfile); } + if(data->set.ssl.CRLfile) { + /* set the CRL list file */ + rc = gnutls_certificate_set_x509_crl_file(conn->ssl[sockindex].cred, + data->set.ssl.CRLfile, + GNUTLS_X509_FMT_PEM); + if(rc < 0) { + failf(data, "error reading crl file %s (%s)\n", + data->set.ssl.CRLfile, gnutls_strerror(rc)); + return CURLE_SSL_CRL_BADFILE; + } + else + infof(data, "found %d CRL in %s\n", + rc, data->set.ssl.CRLfile); + } + /* Initialize TLS session as a client */ rc = gnutls_init(&conn->ssl[sockindex].session, GNUTLS_CLIENT); if(rc) { |