|
 |
612eec |
From 2a5868411c57e25802d2f16fd6b77601f10d0b72 Mon Sep 17 00:00:00 2001
|
|
|
612eec |
From: Nikos Mavrogiannopoulos <nmav@redhat.com>
|
|
|
612eec |
Date: Fri, 29 Apr 2016 22:58:34 +0200
|
|
|
612eec |
Subject: [PATCH] Updated gnutls certificate callback to new API (backwards
|
|
|
612eec |
compatible)
|
|
|
612eec |
|
|
|
612eec |
---
|
|
|
612eec |
src/idevice.c | 13 +++++++++++++
|
|
|
612eec |
1 file changed, 13 insertions(+)
|
|
|
612eec |
|
|
|
612eec |
diff --git a/src/idevice.c b/src/idevice.c
|
|
|
612eec |
index 5912aeb..f2de6a3 100644
|
|
|
612eec |
--- a/src/idevice.c
|
|
|
612eec |
+++ b/src/idevice.c
|
|
|
612eec |
@@ -642,7 +642,11 @@ static const char *ssl_error_to_string(int e)
|
|
|
612eec |
/**
|
|
|
612eec |
* Internally used gnutls callback function that gets called during handshake.
|
|
|
612eec |
*/
|
|
|
612eec |
+#if GNUTLS_VERSION_NUMBER >= 0x020b07
|
|
|
612eec |
+static int internal_cert_callback(gnutls_session_t session, const gnutls_datum_t * req_ca_rdn, int nreqs, const gnutls_pk_algorithm_t * sign_algos, int sign_algos_length, gnutls_retr2_st * st)
|
|
|
612eec |
+#else
|
|
|
612eec |
static int internal_cert_callback(gnutls_session_t session, const gnutls_datum_t * req_ca_rdn, int nreqs, const gnutls_pk_algorithm_t * sign_algos, int sign_algos_length, gnutls_retr_st * st)
|
|
|
612eec |
+#endif
|
|
|
612eec |
{
|
|
|
612eec |
int res = -1;
|
|
|
612eec |
gnutls_certificate_type_t type = gnutls_certificate_type_get(session);
|
|
|
612eec |
@@ -650,7 +654,12 @@ static int internal_cert_callback(gnutls_session_t session, const gnutls_datum_t
|
|
|
612eec |
ssl_data_t ssl_data = (ssl_data_t)gnutls_session_get_ptr(session);
|
|
|
612eec |
if (ssl_data && ssl_data->host_privkey && ssl_data->host_cert) {
|
|
|
612eec |
debug_info("Passing certificate");
|
|
|
612eec |
+#if GNUTLS_VERSION_NUMBER >= 0x020b07
|
|
|
612eec |
+ st->cert_type = type;
|
|
|
612eec |
+ st->key_type = GNUTLS_PRIVKEY_X509;
|
|
|
612eec |
+#else
|
|
|
612eec |
st->type = type;
|
|
|
612eec |
+#endif
|
|
|
612eec |
st->ncerts = 1;
|
|
|
612eec |
st->cert.x509 = &ssl_data->host_cert;
|
|
|
612eec |
st->key.x509 = ssl_data->host_privkey;
|
|
|
612eec |
@@ -759,7 +768,11 @@ LIBIMOBILEDEVICE_API idevice_error_t idevice_connection_enable_ssl(idevice_conne
|
|
|
612eec |
debug_info("enabling SSL mode");
|
|
|
612eec |
errno = 0;
|
|
|
612eec |
gnutls_certificate_allocate_credentials(&ssl_data_loc->certificate);
|
|
|
612eec |
+#if GNUTLS_VERSION_NUMBER >= 0x020b07
|
|
|
612eec |
+ gnutls_certificate_set_retrieve_function(ssl_data_loc->certificate, internal_cert_callback);
|
|
|
612eec |
+#else
|
|
|
612eec |
gnutls_certificate_client_set_retrieve_function(ssl_data_loc->certificate, internal_cert_callback);
|
|
|
612eec |
+#endif
|
|
|
612eec |
gnutls_init(&ssl_data_loc->session, GNUTLS_CLIENT);
|
|
|
612eec |
gnutls_priority_set_direct(ssl_data_loc->session, "NONE:+VERS-SSL3.0:+ANON-DH:+RSA:+AES-128-CBC:+AES-256-CBC:+SHA1:+MD5:+COMP-NULL", NULL);
|
|
|
612eec |
gnutls_credentials_set(ssl_data_loc->session, GNUTLS_CRD_CERTIFICATE, ssl_data_loc->certificate);
|
|
|
612eec |
--
|
|
|
612eec |
2.9.3
|
|
|
612eec |
|