Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
V
vlc-2-2
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Redmine
Redmine
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Operations
Operations
Metrics
Environments
Analytics
Analytics
CI / CD
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
videolan
vlc-2-2
Commits
54ff6997
Commit
54ff6997
authored
Mar 01, 2012
by
Rémi Denis-Courmont
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
gnutls: simplify x509 certs loading, no need for O_DIRECTORY
parent
7222ec27
Changes
1
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
15 additions
and
31 deletions
+15
-31
modules/misc/gnutls.c
modules/misc/gnutls.c
+15
-31
No files found.
modules/misc/gnutls.c
View file @
54ff6997
...
@@ -399,7 +399,7 @@ gnutls_SessionPrioritize (vlc_object_t *obj, gnutls_session_t session)
...
@@ -399,7 +399,7 @@ gnutls_SessionPrioritize (vlc_object_t *obj, gnutls_session_t session)
* Loads x509 credentials from a file descriptor (directory or regular file)
* Loads x509 credentials from a file descriptor (directory or regular file)
* and closes the descriptor.
* and closes the descriptor.
*/
*/
static
void
gnutls_
Addx509
FD
(
vlc_object_t
*
obj
,
static
void
gnutls_
x509_Add
FD
(
vlc_object_t
*
obj
,
gnutls_certificate_credentials_t
cred
,
gnutls_certificate_credentials_t
cred
,
int
fd
,
bool
priv
,
unsigned
recursion
)
int
fd
,
bool
priv
,
unsigned
recursion
)
{
{
...
@@ -426,7 +426,7 @@ static void gnutls_Addx509FD (vlc_object_t *obj,
...
@@ -426,7 +426,7 @@ static void gnutls_Addx509FD (vlc_object_t *obj,
if
(
nfd
!=
-
1
)
if
(
nfd
!=
-
1
)
{
{
msg_Dbg
(
obj
,
"loading x509 credentials from %s..."
,
ent
);
msg_Dbg
(
obj
,
"loading x509 credentials from %s..."
,
ent
);
gnutls_
Addx509
FD
(
obj
,
cred
,
nfd
,
priv
,
recursion
);
gnutls_
x509_Add
FD
(
obj
,
cred
,
nfd
,
priv
,
recursion
);
}
}
else
else
msg_Dbg
(
obj
,
"cannot access x509 credentials in %s"
,
ent
);
msg_Dbg
(
obj
,
"cannot access x509 credentials in %s"
,
ent
);
...
@@ -462,27 +462,11 @@ static void gnutls_Addx509FD (vlc_object_t *obj,
...
@@ -462,27 +462,11 @@ static void gnutls_Addx509FD (vlc_object_t *obj,
close
(
fd
);
close
(
fd
);
}
}
static
void
gnutls_
Addx509Directory
(
vlc_object_t
*
obj
,
static
void
gnutls_
x509_AddPath
(
vlc_object_t
*
obj
,
gnutls_certificate_credentials
cred
,
gnutls_certificate_credentials
cred
,
const
char
*
path
,
bool
priv
)
const
char
*
path
,
bool
priv
)
{
{
msg_Dbg
(
obj
,
"browsing x509 credentials in %s..."
,
path
);
msg_Dbg
(
obj
,
"loading x509 credentials in %s..."
,
path
);
int
fd
=
vlc_open
(
path
,
O_RDONLY
|
O_DIRECTORY
);
if
(
fd
==
-
1
)
{
msg_Warn
(
obj
,
"cannot access x509 in %s: %m"
,
path
);
return
;
}
gnutls_Addx509FD
(
obj
,
cred
,
fd
,
priv
,
5
);
}
static
void
gnutls_Addx509File
(
vlc_object_t
*
obj
,
gnutls_certificate_credentials
cred
,
const
char
*
path
,
bool
priv
)
{
msg_Dbg
(
obj
,
"loading x509 credentials from %s..."
,
path
);
int
fd
=
vlc_open
(
path
,
O_RDONLY
);
int
fd
=
vlc_open
(
path
,
O_RDONLY
);
if
(
fd
==
-
1
)
if
(
fd
==
-
1
)
{
{
...
@@ -490,7 +474,7 @@ static void gnutls_Addx509File (vlc_object_t *obj,
...
@@ -490,7 +474,7 @@ static void gnutls_Addx509File (vlc_object_t *obj,
return
;
return
;
}
}
gnutls_
Addx509FD
(
obj
,
cred
,
fd
,
priv
,
0
);
gnutls_
x509_AddFD
(
obj
,
cred
,
fd
,
priv
,
5
);
}
}
#else
/* WIN32 */
#else
/* WIN32 */
static
int
static
int
...
@@ -557,14 +541,14 @@ static int OpenClient (vlc_tls_t *session, int fd, const char *hostname)
...
@@ -557,14 +541,14 @@ static int OpenClient (vlc_tls_t *session, int fd, const char *hostname)
char
*
userdir
=
config_GetUserDir
(
VLC_DATA_DIR
);
char
*
userdir
=
config_GetUserDir
(
VLC_DATA_DIR
);
if
(
userdir
!=
NULL
)
if
(
userdir
!=
NULL
)
{
{
char
path
[
strlen
(
userdir
)
+
sizeof
(
"/ssl/private"
)];
char
path
[
strlen
(
userdir
)
+
sizeof
(
"/ssl/private
/
"
)];
sprintf
(
path
,
"%s/ssl"
,
userdir
);
sprintf
(
path
,
"%s/ssl"
,
userdir
);
vlc_mkdir
(
path
,
0755
);
vlc_mkdir
(
path
,
0755
);
sprintf
(
path
,
"%s/ssl/certs"
,
userdir
);
sprintf
(
path
,
"%s/ssl/certs
/
"
,
userdir
);
gnutls_
Addx509Directory
(
VLC_OBJECT
(
session
),
sys
->
x509_cred
,
path
,
false
);
gnutls_
x509_AddPath
(
VLC_OBJECT
(
session
),
sys
->
x509_cred
,
path
,
false
);
sprintf
(
path
,
"%s/ssl/private"
,
userdir
);
sprintf
(
path
,
"%s/ssl/private
/
"
,
userdir
);
gnutls_
Addx509Directory
(
VLC_OBJECT
(
session
),
sys
->
x509_cred
,
path
,
true
);
gnutls_
x509_AddPath
(
VLC_OBJECT
(
session
),
sys
->
x509_cred
,
path
,
true
);
free
(
userdir
);
free
(
userdir
);
}
}
...
@@ -573,7 +557,7 @@ static int OpenClient (vlc_tls_t *session, int fd, const char *hostname)
...
@@ -573,7 +557,7 @@ static int OpenClient (vlc_tls_t *session, int fd, const char *hostname)
char
path
[
strlen
(
confdir
)
char
path
[
strlen
(
confdir
)
+
sizeof
(
"/ssl/certs/ca-certificates.crt"
)];
+
sizeof
(
"/ssl/certs/ca-certificates.crt"
)];
sprintf
(
path
,
"%s/ssl/certs/ca-certificates.crt"
,
confdir
);
sprintf
(
path
,
"%s/ssl/certs/ca-certificates.crt"
,
confdir
);
gnutls_
Addx509File
(
VLC_OBJECT
(
session
),
sys
->
x509_cred
,
path
,
false
);
gnutls_
x509_AddPath
(
VLC_OBJECT
(
session
),
sys
->
x509_cred
,
path
,
false
);
}
}
#else
/* WIN32 */
#else
/* WIN32 */
gnutls_loadOSCAList
(
VLC_OBJECT
(
session
),
sys
->
x509_cred
);
gnutls_loadOSCAList
(
VLC_OBJECT
(
session
),
sys
->
x509_cred
);
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment