diff options
| author | runge <runge> | 2008-05-12 01:04:40 +0000 |
|---|---|---|
| committer | runge <runge> | 2008-05-12 01:04:40 +0000 |
| commit | d538e4e28148c967d00310f3eca1a648916b771e (patch) | |
| tree | f51d18743903c98200b24f82d5e19e1cbde34a53 /x11vnc/sslhelper.c | |
| parent | fa53197938187817f93d3b86ee6dd696bce1e834 (diff) | |
| download | libtdevnc-d538e4e28148c967d00310f3eca1a648916b771e.tar.gz libtdevnc-d538e4e28148c967d00310f3eca1a648916b771e.zip | |
x11vnc: SSL fixes. Increase cert lifetimes to 2 years. Print ssl err msg.
Diffstat (limited to 'x11vnc/sslhelper.c')
| -rw-r--r-- | x11vnc/sslhelper.c | 19 |
1 files changed, 18 insertions, 1 deletions
diff --git a/x11vnc/sslhelper.c b/x11vnc/sslhelper.c index a7466b2..2739e5c 100644 --- a/x11vnc/sslhelper.c +++ b/x11vnc/sslhelper.c @@ -2130,8 +2130,16 @@ if (db > 1) fprintf(stderr, "ssl_init: 4\n"); return 0; } else if (rc < 0) { + unsigned long err; + int cnt = 0; - rfbLog("SSL: ssl_helper[%d]: SSL_accept() *FATAL: %d\n", getpid(), rc); + rfbLog("SSL: ssl_helper[%d]: SSL_accept() *FATAL: %d SSL FAILED\n", getpid(), rc); + while ((err = ERR_get_error()) != 0) { + rfbLog("SSL: %s\n", ERR_error_string(err, NULL)); + if (cnt++ > 100) { + break; + } + } return 0; } else if (dnow() > start + 3.0) { @@ -2174,9 +2182,18 @@ if (db > 1) fprintf(stderr, "ssl_init: 4\n"); } } else { rfbLog("SSL: ssl_helper[%d]: accepted client %s x509 cert is:\n", getpid(), name); +#if LIBVNCSERVER_HAVE_X509_PRINT_EX_FP X509_print_ex_fp(stderr, x, 0, XN_FLAG_MULTILINE); +#endif if (cr != NULL) { +#if LIBVNCSERVER_HAVE_X509_PRINT_EX_FP X509_print_ex_fp(cr, x, 0, XN_FLAG_MULTILINE); +#else + rfbLog("** not compiled with libssl X509_print_ex_fp() function **\n"); + if (users_list && strstr(users_list, "sslpeer=")) { + rfbLog("** -users sslpeer= will not work! **\n"); + } +#endif fclose(cr); } } |