Changeset 5431:fe615fd5e0de
- Timestamp:
- 2008-06-28 18:44:10 (5 months ago)
- Author:
- Brendan Cully <brendan@…>
- Branch:
- HEAD
- Message:
-
Basic support for $ssl_client_cert when compiled with gnutls.
The key must not be encrypted. Closes #2911.
- Files:
-
Legend:
- Unmodified
- Added
- Removed
-
|
r5429
|
r5431
|
|
| 1 | | 2008-06-26 12:47 -0700 Brendan Cully <brendan@kublai.com> (be7e07963099) |
| | 1 | 2008-06-27 12:04 -0700 Petr Písař <petr.pisar@atlas.cz> (40c6e851bf76) |
| | 2 | |
| | 3 | * po/cs.po: Updated Czech translation. |
| | 4 | |
| | 5 | 2008-06-26 12:52 -0700 Brendan Cully <brendan@kublai.com> (c5256c65eedb) |
| | 6 | |
| | 7 | * handler.c: Mark new error message for translation. |
| 2 | 8 | |
| 3 | 9 | * curs_lib.c: Force a resize event after calling an external editor. |
-
|
r5406
|
r5431
|
|
| 7 | 7 | hg tip: |
| 8 | 8 | |
| | 9 | + $ssl_client_cert available with gnutls as well as openssl |
| 9 | 10 | + 'mime_lookup application/octet-stream' added to system Muttrc |
| 10 | 11 | |
-
|
r5343
|
r5431
|
|
| 128 | 128 | #if defined(USE_SSL) |
| 129 | 129 | WHERE char *SslCertFile INITVAL (NULL); |
| 130 | | #endif |
| | 130 | WHERE char *SslClientCert INITVAL (NULL); |
| 131 | 131 | #ifdef USE_SSL_OPENSSL |
| 132 | | WHERE char *SslClientCert INITVAL (NULL); |
| 133 | 132 | WHERE LIST *SslSessionCerts INITVAL (NULL); |
| 134 | 133 | #endif |
| 135 | | #if defined(USE_SSL) |
| 136 | 134 | WHERE char *SslEntropyFile INITVAL (NULL); |
| 137 | | #endif |
| 138 | 135 | #ifdef USE_SSL_GNUTLS |
| 139 | 136 | WHERE short SslDHPrimeBits; |
| 140 | 137 | WHERE char *SslCACertFile INITVAL (NULL); |
| | 138 | #endif |
| 141 | 139 | #endif |
| 142 | 140 | WHERE char *StChars; |
-
|
r5424
|
r5431
|
|
| 1996 | 1996 | |
| 1997 | 1997 | #if defined(USE_SSL) |
| 1998 | | #ifdef USE_SSL_OPENSSL |
| 1999 | 1998 | { "ssl_client_cert", DT_PATH, R_NONE, UL &SslClientCert, 0 }, |
| 2000 | 1999 | /* |
| … |
… |
|
| 2003 | 2002 | ** key. |
| 2004 | 2003 | */ |
| 2005 | | #endif /* USE_SSL_OPENSSL */ |
| 2006 | 2004 | { "ssl_force_tls", DT_BOOL, R_NONE, OPTSSLFORCETLS, 0 }, |
| 2007 | 2005 | /* |
-
|
r5368
|
r5431
|
|
| 385 | 385 | ACCOUNT* account = (ACCOUNT*) context; |
| 386 | 386 | |
| | 387 | if (!result) |
| | 388 | return SASL_FAIL; |
| | 389 | |
| 387 | 390 | *result = NULL; |
| 388 | 391 | if (len) |
-
|
r5363
|
r5431
|
|
| 200 | 200 | } |
| 201 | 201 | |
| 202 | | /* |
| 203 | | gnutls_set_x509_client_key (data->xcred, "", ""); |
| 204 | | gnutls_set_x509_cert_callback (data->xcred, cert_callback); |
| 205 | | */ |
| | 202 | if (SslClientCert) |
| | 203 | { |
| | 204 | dprint (2, (debugfile, "Using client certificate %s\n", SslClientCert)); |
| | 205 | gnutls_certificate_set_x509_key_file (data->xcred, SslClientCert, |
| | 206 | SslClientCert, GNUTLS_X509_FMT_PEM); |
| | 207 | } |
| 206 | 208 | |
| 207 | 209 | gnutls_init(&data->state, GNUTLS_CLIENT); |
