* serv_crypto.c: small fix to make self-signed certs no longer invalid

diff --git a/citadel/ChangeLog b/citadel/ChangeLog
index 91d0f0ace9152b066e7654a12d488b4d3f19e5b2..f5c35897cacf10d0a4bc29a68bbe1538eaad07ba 100644 (file)
--- a/citadel/ChangeLog
+++ b/citadel/ChangeLog
@@ -1,4 +1,7 @@
  $Log$
+ Revision 620.21  2004/04/21 03:44:50  ajc
+ * serv_crypto.c: small fix to make self-signed certs no longer invalid
+
  Revision 620.20  2004/04/21 03:00:06  ajc
  * Replace ctdl_install_certificate() with convenience functions found
    in the OpenSSL library.
@@ -5712,4 +5715,3 @@ Sat Jul 11 00:20:48 EDT 1998 Nathan Bryant <bryant@cs.usm.maine.edu>
 
 Fri Jul 10 1998 Art Cancro <ajc@uncensored.citadel.org>
        * Initial CVS import
-

diff --git a/citadel/serv_crypto.c b/citadel/serv_crypto.c
index 24d5bd242c4fc3887a29818870bfee5c73a779f5..a2593aaa0623854ab61d21a04d04349046df63aa 100644 (file)
--- a/citadel/serv_crypto.c
+++ b/citadel/serv_crypto.c
@@ -300,6 +300,7 @@ void init_ssl(void)
                        if (req) {
                                if (cer = X509_new(), cer != NULL) {
 
+                                       ASN1_INTEGER_set(X509_get_serialNumber(cer), 0);
                                        X509_set_issuer_name(cer, req->req_info->subject);
                                        X509_set_subject_name(cer, req->req_info->subject);
                                        X509_gmtime_adj(X509_get_notBefore(cer),0);