From 7d3f5d7ac101b180aefaf2430e0ee09620883e99 Mon Sep 17 00:00:00 2001 From: Gisle Vanem Date: Tue, 14 Dec 2004 14:20:21 +0000 Subject: urldata.h: Removed engine_list. ssluse.*: Added SSL_strerror(). Curl_SSL_engines_list() now returns a slist which must be freed by caller. --- lib/ssluse.c | 51 ++++++++++++++++++++++++++++----------------------- 1 file changed, 28 insertions(+), 23 deletions(-) (limited to 'lib/ssluse.c') diff --git a/lib/ssluse.c b/lib/ssluse.c index f1df3b959..f86834370 100644 --- a/lib/ssluse.c +++ b/lib/ssluse.c @@ -412,6 +412,22 @@ int cert_verify_callback(int ok, X509_STORE_CTX *ctx) return ok; } +/* Return error string for last OpenSSL error + */ +static char *SSL_strerror(unsigned long error, char *buf, size_t size) +{ +#ifdef HAVE_ERR_ERROR_STRING_N + /* OpenSSL 0.9.6 and later has a function named + ERRO_error_string_n() that takes the size of the buffer as a + third argument */ + ERR_error_string_n(error, buf, size); +#else + (void) size; + ERR_error_string(error, buf); +#endif + return (buf); +} + /* "global" init done? */ static int init_ssl=0; @@ -480,6 +496,7 @@ void Curl_SSL_Close(struct connectdata *conn) { (void)conn; } + #endif @@ -501,8 +518,11 @@ CURLcode Curl_SSL_set_engine(struct SessionHandle *data, const char *engine) } data->state.engine = NULL; if (!ENGINE_init(e)) { + char buf[256]; + ENGINE_free(e); - failf(data, "Failed to initialise SSL Engine '%s'", engine); + failf(data, "Failed to initialise SSL Engine '%s':\n%s", + engine, SSL_strerror(ERR_get_error(), buf, sizeof(buf))); return (CURLE_SSL_ENGINE_INITFAILED); } data->state.engine = e; @@ -533,23 +553,19 @@ CURLcode Curl_SSL_set_engine_default(struct SessionHandle *data) return (CURLE_OK); } -/* Build the list of OpenSSL crypto engine names. Add to - * linked list at data->state.engine_list. +/* Return list of OpenSSL crypto engine names. */ -CURLcode Curl_SSL_engines_list(struct SessionHandle *data) +struct curl_slist *Curl_SSL_engines_list(struct SessionHandle *data) { + struct curl_slist *list = NULL; #if defined(USE_SSLEAY) && defined(HAVE_OPENSSL_ENGINE_H) ENGINE *e; - /* Free previous list */ - if (data->state.engine_list) - curl_slist_free_all(data->state.engine_list); - - data->state.engine_list = NULL; for (e = ENGINE_get_first(); e; e = ENGINE_get_next(e)) - data->state.engine_list = curl_slist_append(data->state.engine_list, ENGINE_get_id(e)); + list = curl_slist_append(list, ENGINE_get_id(e)); #endif - return (CURLE_OK); + (void) data; + return (list); } @@ -696,10 +712,6 @@ int Curl_SSL_Close_All(struct SessionHandle *data) ENGINE_free(data->state.engine); data->state.engine = NULL; } - if (data->state.engine_list) - curl_slist_free_all(data->state.engine_list); - data->state.engine_list = NULL; - #endif return 0; } @@ -1432,14 +1444,7 @@ Curl_SSLConnect(struct connectdata *conn, } /* Could be a CERT problem */ -#ifdef HAVE_ERR_ERROR_STRING_N - /* OpenSSL 0.9.6 and later has a function named - ERRO_error_string_n() that takes the size of the buffer as a - third argument */ - ERR_error_string_n(errdetail, error_buffer, sizeof(error_buffer)); -#else - ERR_error_string(errdetail, error_buffer); -#endif + SSL_strerror(errdetail, error_buffer, sizeof(error_buffer)); failf(data, "%s%s", cert_problem ? cert_problem : "", error_buffer); return rc; } -- cgit v1.2.3