ITS#6053 must use gnutls_x509_privkey_init()

author Howard Chu <hyc@openldap.org>

Sat, 11 Apr 2009 03:53:26 +0000 (03:53 +0000)

committer Howard Chu <hyc@openldap.org>

Sat, 11 Apr 2009 03:53:26 +0000 (03:53 +0000)
author Howard Chu <hyc@openldap.org>
Sat, 11 Apr 2009 03:53:26 +0000 (03:53 +0000)
committer Howard Chu <hyc@openldap.org>
Sat, 11 Apr 2009 03:53:26 +0000 (03:53 +0000)
diff --git a/libraries/libldap/tls_g.c b/libraries/libldap/tls_g.c

index 738fb36fc3b8b3a117fa3ccd09c4aece2da5dfc8..e3c82bbc6f6f68fe1c2e9d3d884e1b8553b408e4 100644 (file)
--- a/libraries/libldap/tls_g.c
+++ b/libraries/libldap/tls_g.c
@@ -354,6 +354,9 @@ tlsg_ctx_init( struct ldapoptions *lo, struct ldaptls *lt, int is_server )
                 gnutls_x509_crt_t certs[VERIFY_DEPTH];
                 unsigned int max = VERIFY_DEPTH;
  
+               rc = gnutls_x509_privkey_init( &key );
+               if ( rc ) return -1;
+
                 /* OpenSSL builds the cert chain for us, but GnuTLS
                  * expects it to be present in the certfile. If it's
                  * not, we have to build it ourselves. So we have to
author	Howard Chu <hyc@openldap.org>
	Sat, 11 Apr 2009 03:53:26 +0000 (03:53 +0000)
committer	Howard Chu <hyc@openldap.org>
	Sat, 11 Apr 2009 03:53:26 +0000 (03:53 +0000)