From: Alexander Barton <alex@barton.de>
Date: Fri, 5 Jan 2024 21:23:53 +0000 (+0100)
Subject: S2S-TLS/GnuTLS: Update SSL code for GnuTLS certificate reloading
X-Git-Tag: rel-27-rc1~26
X-Git-Url: https://arthur.barton.de/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=0e176b557037b583f408229b518646804b33d745;hp=c8589e9890742c377c78595131ef1cdc8d784c66;p=ngircd-alex.git

S2S-TLS/GnuTLS: Update SSL code for GnuTLS certificate reloading

Without this, the S2S-TLS-Patch not even compiles with GnuTLS because
of the "new" GnuTLS certificate reload support implemented in commit
eead4a63 ("x509_cred_slot").
---

diff --git a/src/ngircd/conn-ssl.c b/src/ngircd/conn-ssl.c
index 50116288..cef580f8 100644
--- a/src/ngircd/conn-ssl.c
+++ b/src/ngircd/conn-ssl.c
@@ -468,6 +468,9 @@ ConnSSL_SetVerifyProperties_gnutls(void)
 	if (!Conf_SSLOptions.CAFile)
 		return true;
 
+	x509_cred_slot *slot = array_get(&x509_creds, sizeof(x509_cred_slot), x509_cred_idx);
+	gnutls_certificate_credentials_t x509_cred = slot->x509_cred;
+
 	err = gnutls_certificate_set_x509_trust_file(x509_cred,
 						     Conf_SSLOptions.CAFile,
 						     GNUTLS_X509_FMT_PEM);