mirror of https://github.com/getdnsapi/getdns.git
Fix sole pinset validation with ssl_dane library
This commit is contained in:
parent
cad7eb2461
commit
7c1b43b420
|
@ -67,7 +67,7 @@ typedef struct _getdns_tls_connection {
|
|||
const getdns_log_config* log;
|
||||
#if defined(USE_DANESSL)
|
||||
const char* auth_name;
|
||||
sha256_pin_t* pinset;
|
||||
const sha256_pin_t* pinset;
|
||||
#endif
|
||||
} _getdns_tls_connection;
|
||||
|
||||
|
|
|
@ -904,7 +904,7 @@ getdns_return_t _getdns_tls_connection_set_host_pinset(_getdns_tls_connection* c
|
|||
if (!conn || !conn->ssl || !auth_name)
|
||||
return GETDNS_RETURN_INVALID_PARAMETER;
|
||||
|
||||
#if defined(USE_DANE_SSL)
|
||||
#if defined(USE_DANESSL)
|
||||
/* Stash auth name and pinset away for use in cert verification. */
|
||||
conn->auth_name = auth_name;
|
||||
conn->pinset = pinset;
|
||||
|
|
Loading…
Reference in New Issue