[FIX] Actually apply serverName
As it turns out, it *was* odd. Not doing that will cause *someone* to spend several hours fixing a SSL problem around a bridge they're making, which needs to download media from a server and can't from *some* for an undiscernable reason, causing said person to start going insane before realising that Cytoplasm didn't set the server name properly.
This commit is contained in:
parent
5dc1ec49eb
commit
d7faff734c
1 changed files with 1 additions and 8 deletions
|
@ -71,14 +71,6 @@ TlsInitClient(int fd, const char *serverName)
|
||||||
OpenSSLCookie *cookie;
|
OpenSSLCookie *cookie;
|
||||||
char errorStr[256];
|
char errorStr[256];
|
||||||
|
|
||||||
/*
|
|
||||||
* TODO: Seems odd that this isn't needed to make the
|
|
||||||
* connection... we should figure out how to verify the
|
|
||||||
* certificate matches the server we think we're
|
|
||||||
* connecting to.
|
|
||||||
*/
|
|
||||||
(void) serverName;
|
|
||||||
|
|
||||||
cookie = Malloc(sizeof(OpenSSLCookie));
|
cookie = Malloc(sizeof(OpenSSLCookie));
|
||||||
if (!cookie)
|
if (!cookie)
|
||||||
{
|
{
|
||||||
|
@ -96,6 +88,7 @@ TlsInitClient(int fd, const char *serverName)
|
||||||
}
|
}
|
||||||
|
|
||||||
cookie->ssl = SSL_new(cookie->ctx);
|
cookie->ssl = SSL_new(cookie->ctx);
|
||||||
|
SSL_set_tlsext_host_name(cookie->ssl, serverName);
|
||||||
if (!cookie->ssl)
|
if (!cookie->ssl)
|
||||||
{
|
{
|
||||||
goto error;
|
goto error;
|
||||||
|
|
Loading…
Reference in a new issue