22 lines
936 B
Plaintext
22 lines
936 B
Plaintext
Index: dpi/https.c
|
|
--- dpi/https.c.orig
|
|
+++ dpi/https.c
|
|
@@ -169,7 +169,7 @@ static void yes_ssl_support(void)
|
|
/*FIXME - provide for sysconfdir variables and such*/
|
|
if (exit_error == 0){
|
|
if (SSL_CTX_load_verify_locations(
|
|
- ssl_context, NULL, "/etc/ssl/certs/" ) == 0){
|
|
+ ssl_context, "/etc/ssl/cert.pem", "/etc/ssl/certs/" ) == 0){
|
|
MSG("Error opening system x509 certificate location\n");
|
|
exit_error = 1;
|
|
}
|
|
@@ -476,7 +476,7 @@ static int handle_certificate_problem(SSL * ssl_connec
|
|
case X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT:
|
|
/*Either self signed and untrusted*/
|
|
/*Extract CN from certificate name information*/
|
|
- if ((cn = strstr(remote_cert->name, "/CN=")) == NULL) {
|
|
+ if ((cn = strstr(X509_get_subject_name(remote_cert), "/CN=")) == NULL) {
|
|
strcpy(buf, "(no CN given)");
|
|
} else {
|
|
char *cn_end;
|