iDevice GnuTLS issue with iOS 4.2 - libimobiledevice

Nikias Bassen nikias at gmx.li
Wed Nov 24 11:05:47 CET 2010


Hi,

On Wed, 24 Nov 2010 09:29:29 +0100
Nikos Mavrogiannopoulos <nmav at gnutls.org> wrote:

> On 11/24/2010 06:25 AM, Nikias Bassen wrote:
> > Hi,
> > 
> > we found out that the certificate checking is more strict now as it seems. I
> > have the following question. Using openssl, we do the following:
> > 
> > if (SSL_CTX_use_certificate_file(ssl_ctx,
> >   "/path/to/certificate.pem",
> >   SSL_FILETYPE_PEM) != 1) {
> > 	debug_info("WARNING: Could not load RootCertificate");
> > }
> > if (SSL_CTX_use_RSAPrivateKey_file(ssl_ctx,
> >   "/path/to/privatekey.pem",
> >   SSL_FILETYPE_PEM) != 1) {
> > 	debug_info("WARNING: Could not load RootPrivateKey");
> > }
> > 
> > What is the equivalent to this when using gnutls?
> 
> Check gnutls_certificate_set_x509_key_file() and the examples in the
> gnutls manual.

These functions are intended for the server, right? Remember we are on the
client side. Does that make any difference?

Regards
Nikias




More information about the Gnutls-devel mailing list