mbedtls: use server certificate for client mode too
This commit is contained in:
William Pitcock
parent
162a91d6ed
commit
493897d67c
1 changed files with 9 additions and 0 deletions
|
|
@ -357,7 +357,10 @@ rb_setup_ssl_server(const char *cert, const char *keyfile, const char *dhfile)
|
||||||
}
|
}
|
||||||
|
|
||||||
if (x509.next)
|
if (x509.next)
|
||||||
|
{
|
||||||
mbedtls_ssl_conf_ca_chain(&serv_config, x509.next, NULL);
|
mbedtls_ssl_conf_ca_chain(&serv_config, x509.next, NULL);
|
||||||
|
mbedtls_ssl_conf_ca_chain(&client_config, x509.next, NULL);
|
||||||
|
}
|
||||||
|
|
||||||
if ((ret = mbedtls_ssl_conf_own_cert(&serv_config, &x509, &serv_pk)) != 0)
|
if ((ret = mbedtls_ssl_conf_own_cert(&serv_config, &x509, &serv_pk)) != 0)
|
||||||
{
|
{
|
||||||
|
|
@ -365,6 +368,12 @@ rb_setup_ssl_server(const char *cert, const char *keyfile, const char *dhfile)
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
if ((ret = mbedtls_ssl_conf_own_cert(&client_config, &x509, &serv_pk)) != 0)
|
||||||
|
{
|
||||||
|
rb_lib_log("rb_setup_ssl_server: failed to set up own certificate: -0x%x", -ret);
|
||||||
|
return 0;
|
||||||
|
}
|
||||||
|
|
||||||
return 1;
|
return 1;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue