} thread_data;
#endif
+#if GNUTLS_VERSION_NUMBER < 0x030400
+#define DEFAULT_GNUTLS_PRIORITY "NORMAL:-VERS-SSL3.0"
+#else
+#define DEFAULT_GNUTLS_PRIORITY "NORMAL"
+#endif
+
#if GNUTLS_VERSION_NUMBER <= 0x020c00
static int gnutls_client_cert_cb(gnutls_session_t session,
const gnutls_datum_t *req_ca_rdn, int nreqs,
{
#ifndef G_OS_WIN32
const char *cert_files[]={
+ "/etc/ssl/cert.pem",
"/etc/pki/tls/certs/ca-bundle.crt",
"/etc/certs/ca-bundle.crt",
"/etc/ssl/ca-bundle.pem",
sockinfo->gnutls_priority, r);
}
else {
- gnutls_priority_set_direct(session, "NORMAL:-VERS-SSL3.0", NULL);
+ gnutls_priority_set_direct(session, DEFAULT_GNUTLS_PRIORITY, NULL);
}
+
gnutls_record_disable_padding(session);
gnutls_credentials_set(session, GNUTLS_CRD_CERTIFICATE, xcred);