From 4fa79aa7a6332add75e334178e02737518a0bee7 Mon Sep 17 00:00:00 2001
From: Fabian Mauchle <fabian.mauchle@switch.ch>
Date: Fri, 24 Mar 2017 11:05:18 +0100
Subject: create new cert_store before reloading CAs and CRLs

Conflicts:
	ChangeLog
---
 tlscommon.c | 1 +
 1 file changed, 1 insertion(+)

(limited to 'tlscommon.c')

diff --git a/tlscommon.c b/tlscommon.c
index 3d27a35..ca0fa83 100644
--- a/tlscommon.c
+++ b/tlscommon.c
@@ -158,6 +158,7 @@ static int tlsaddcacrl(SSL_CTX *ctx, struct tls *conf) {
     X509_STORE *x509_s;
     unsigned long error;
 
+    SSL_CTX_set_cert_store(ctx, X509_STORE_new());
     if (!SSL_CTX_load_verify_locations(ctx, conf->cacertfile, conf->cacertpath)) {
 	while ((error = ERR_get_error()))
 	    debug(DBG_ERR, "SSL: %s", ERR_error_string(error, NULL));
-- 
cgit v1.1