Return the entire TLS certificate chain back to the caller

* src/gnutls.c (gnutls_deinit_certificates): New function. (Fgnutls_peer_status): Return all certificates in the chain back to Lisp land. (gnutls_verify_boot): Compute all the x509 certificates in the chain. * src/process.h (struct Lisp_Process): Adjust gnutls fields so that we can keep tracks of all certificates in the chain instead of just the host certificate.
author: Lars Ingebrigtsen <larsi@gnus.org> 2018-06-24 21:17:37 +0200
committer: Lars Ingebrigtsen <larsi@gnus.org> 2018-06-24 21:17:46 +0200
commit: c8745d95cffc348da7ae1e7f6a6c07ec2f4b2f3f (patch)
tree: 8b51f860eca6020f9db662db9d7109a5e11d26db /src/process.h
parent: cd5bb4bf3dbad8941d25823f398b595b8f0edbb9 (diff)
download: emacs-c8745d95cffc348da7ae1e7f6a6c07ec2f4b2f3f.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/src/process.h b/src/process.h
index 42cc66ec560..6bc22146a72 100644
--- a/src/process.h
+++ b/src/process.h
@@ -194,7 +194,8 @@ struct Lisp_Process
     gnutls_session_t gnutls_state;
     gnutls_certificate_client_credentials gnutls_x509_cred;
     gnutls_anon_client_credentials_t gnutls_anon_cred;
-    gnutls_x509_crt_t gnutls_certificate;
+    gnutls_x509_crt_t *gnutls_certificates;
+    int gnutls_certificates_length;
     unsigned int gnutls_peer_verification;
     unsigned int gnutls_extra_peer_verification;
     int gnutls_log_level;
author	Lars Ingebrigtsen <larsi@gnus.org>	2018-06-24 21:17:37 +0200
committer	Lars Ingebrigtsen <larsi@gnus.org>	2018-06-24 21:17:46 +0200
commit	c8745d95cffc348da7ae1e7f6a6c07ec2f4b2f3f (patch)
tree	8b51f860eca6020f9db662db9d7109a5e11d26db /src/process.h
parent	cd5bb4bf3dbad8941d25823f398b595b8f0edbb9 (diff)
download	emacs-c8745d95cffc348da7ae1e7f6a6c07ec2f4b2f3f.tar.gz