gnutls_session_t session;
GString *buffer;
gboolean handshaking;
+ gboolean failed;
gpointer lowconn;
};
static void *cred;
cred = ssl_server_get_credentials ();
gnutls_init (session, GNUTLS_SERVER);
- gnutls_priority_set_direct (*session, "NORMAL", NULL);
+ gnutls_set_default_priority (*session);
gnutls_credentials_set (*session, GNUTLS_CRD_CERTIFICATE, cred);
gnutls_dh_set_prime_bits (*session, DH_BITS);
}
ssl_client_session_new (&ssl->session);
ssl->buffer = g_string_sized_new (4096);
ssl->handshaking = FALSE;
+ ssl->failed = FALSE;
return ssl;
}
}
if (r == 0)
{
- gnutls_transport_set_errno (ssl->session, EAGAIN);
+ errno = (EAGAIN);
return -1;
}
return r;
if ((error = gnutls_handshake (ssl->session)) < 0)
{
if (gnutls_error_is_fatal (error))
- g_critical ("Fatal error while doing TLS handshaking: %s\n",
- gnutls_strerror (error));
+ {
+ g_critical ("Fatal error while doing TLS handshaking: %s\n",
+ gnutls_strerror (error));
+ ssl->failed = TRUE;
+ }
}
else
{
if (ssl->handshaking)
{
ssl_server_handshake (ssl);
+ /* FIXME: create HC_CONN_ERROR */
+ if (ssl->failed && ssl_conn->func)
+ ssl_conn->func (ssl_conn, HC_EVENT_CLOSE, ssl_conn->data);
return;
}
while ((r = hc_conn_read (ssl->lowconn, buffer, sizeof (buffer))) > 0)