artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 76ae6f5) | patch
Load CA, certificate and key files into memory when the appropriate
authorjsing <jsing@openbsd.org>
Sat, 13 Aug 2016 13:05:51 +0000 (13:05 +0000)
committerjsing <jsing@openbsd.org>
Sat, 13 Aug 2016 13:05:51 +0000 (13:05 +0000)
commit03ce4948ef50ba3130069e0bb0e5999e993862d6
tree9a24a51fa0c0572acec6df14fa92f60b3a987c87tree | snapshot
parent76ae6f58fec3f10df580099206d975629d3f01d9commit | diff
Load CA, certificate and key files into memory when the appropriate
tls_config_set_*_file() function is called. This allows us to immediately
propagate useful error messages, play more nicely with privsep/pledge and
have a single code path. Instead of always loading the default CA when
tls_config_new() is called, defer and only load the default CA when
tls_configure() is invoked, if a CA has not already been specified.

ok beck@ bluhm@
lib/libtls/tls.c diff | blob | history
lib/libtls/tls_config.c diff | blob | history
lib/libtls/tls_internal.h diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim