Temporarily hard-wired host credentials to be used by the server side

author Daniel Kouřil <kouril@ics.muni.cz>

Tue, 17 Jan 2012 20:14:39 +0000 (20:14 +0000)

committer Daniel Kouřil <kouril@ics.muni.cz>

Tue, 17 Jan 2012 20:14:39 +0000 (20:14 +0000)
author Daniel Kouřil <kouril@ics.muni.cz>
Tue, 17 Jan 2012 20:14:39 +0000 (20:14 +0000)
committer Daniel Kouřil <kouril@ics.muni.cz>
Tue, 17 Jan 2012 20:14:39 +0000 (20:14 +0000)
diff --git a/emi.canl.canl-c/src/canl_ssl.c b/emi.canl.canl-c/src/canl_ssl.c

index c416369..58a9f31 100644 (file)
--- a/emi.canl.canl-c/src/canl_ssl.c
+++ b/emi.canl.canl-c/src/canl_ssl.c
@@ -108,6 +108,9 @@ ssl_server_init(glb_ctx *cc, void *mech_ctx, void **ctx)
      SSL_CTX_set_verify(ssl_ctx, SSL_VERIFY_NONE, proxy_verify_callback);
      SSL_CTX_set_cert_verify_callback(ssl_ctx, proxy_app_verify_callback, 0);
  
+    SSL_use_certificate_file(ssl, "/etc/grid-security/hostcert.pem", SSL_FILETYPE_PEM);
+    SSL_use_PrivateKey_file(ssl, "/etc/grid-security/hostkey.pem", SSL_FILETYPE_PEM);
+
      SSL_set_accept_state(ssl);
  
  #if 0
author	Daniel Kouřil <kouril@ics.muni.cz>
	Tue, 17 Jan 2012 20:14:39 +0000 (20:14 +0000)
committer	Daniel Kouřil <kouril@ics.muni.cz>
	Tue, 17 Jan 2012 20:14:39 +0000 (20:14 +0000)