DWS/chrony
1
0
Fork 0
mirror of https://gitlab.com/chrony/chrony.git synced 2025-12-06 18:25:06 -05:00
Code Issues Packages Projects Releases Wiki Activity

nts: allow multiple files with trusted certificates

Browse Source 
Allow the ntstrustedcerts directive to be specified multiple times.
This commit is contained in:
Miroslav Lichvar
2021-02-11 12:20:59 +01:00
parent 90557cf1ba
commit 316d47e3b4
7 changed files with 46 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
nts_ke_client.c
View File

@@ -268,7 +268,9 @@ handle_message(void *arg)
NKC_Instance
NKC_CreateInstance(IPSockAddr *address, const char *name)
{
const char **trusted_certs;
NKC_Instance inst;
int n_certs;
inst = MallocNew(struct NKC_Instance_Record);
@@ -279,9 +281,11 @@ NKC_CreateInstance(IPSockAddr *address, const char *name)
inst->destroying = 0;
inst->got_response = 0;
n_certs = CNF_GetNtsTrustedCertsFiles(&trusted_certs);
/* Share the credentials with other client instances */
if (!client_credentials)
client_credentials = NKSN_CreateClientCertCredentials(CNF_GetNtsTrustedCertFile());
client_credentials = NKSN_CreateClientCertCredentials(trusted_certs, n_certs);
client_credentials_refs++;
return inst;