/[imapfilter]/imapfilter/socket.c

Diff of /imapfilter/socket.c

Parent Directory | Revision Log | View Patch Patch

-revision 1.2 by lefcha,
Tue Oct 23 09:23:08 2001 UTC
+revision 1.3 by lefcha,
Thu Nov  1 16:38:23 2001 UTC
 Line 13
  #ifdef SSL_TLS
  #include <openssl/ssl.h>
  #include <openssl/err.h>
+ #include <openssl/x509.h>
  static SSL *ssl;
-Line 85 
 int ssl_init(unsigned int protocol)
+Line 86 
 int ssl_init(unsigned int protocol)
      int e;
      SSL_CTX *ctx;
      SSL_METHOD *method = NULL;
+     X509 *cert;
+     char *c;
+     EVP_MD *evp;
+     unsigned char digest[EVP_MAX_MD_SIZE];
+     int s, i;
      SSL_library_init();
-Line 115 
 int ssl_init(unsigned int protocol)
+Line 121 
 int ssl_init(unsigned int protocol)
                ERR_error_string(e, NULL));
          return ERROR_SSL;
      }
+     /* Get server's certificate. */
+     if (!(cert = SSL_get_peer_certificate(ssl)))
+         return ERROR_SSL;
+     if (!(c = X509_NAME_oneline(X509_get_subject_name(cert), 0, 0)))
+         return ERROR_SSL;
+     verbose("Server certificate subject: %s\n", c);
+     free(c);
+     if (!(c = X509_NAME_oneline(X509_get_issuer_name(cert), 0, 0)))
+         return ERROR_SSL;
+     verbose("Server certificate issuer: %s\n", c);
+     free(c);
+     if (!(evp = EVP_md5()))
+         return ERROR_SSL;
+     if (!(X509_digest(cert, evp, digest, &s)))
+         return ERROR_SSL;
+     verbose("Server key fingerprint: ");
+     for (i = 0; i < s; i++)
+         verbose(i != s - 1 ? "%02X:" : "%02X\n", digest[i]);
+     X509_free(cert);
      SSL_CTX_free(ctx);
      return 0;

 Legend:



Removed from v.1.2
 


changed lines


 
Added in v.1.3
 Legend:



Removed from v.1.2
 


changed lines


 
Added in v.1.3
-Removed from v.1.2
+Added in v.1.3

webmaster@linux.gr	ViewVC Help
Powered by ViewVC 1.1.26