OpenSSL: make same change as recently for GnuTLS: show file name if

certificate or key file setup fails, because the message from the
library doesn't. Also, update all the OpenSSL TLS tests, which hadn't
been tried for a while, for various recent changes such as protocol
names.

diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog
index a9980534c3c6726c3f4529d0234728d9289cbe7d..c35a96f6568bc4b18108828045fb0b32863a3138 100644 (file)
--- a/doc/doc-txt/ChangeLog
+++ b/doc/doc-txt/ChangeLog
@@ -1,4 +1,4 @@
-$Cambridge: exim/doc/doc-txt/ChangeLog,v 1.41 2004/11/25 13:54:31 ph10 Exp $
+$Cambridge: exim/doc/doc-txt/ChangeLog,v 1.42 2004/11/25 15:29:36 ph10 Exp $
 
 Change log file for Exim from version 4.21
 -------------------------------------------
@@ -178,6 +178,8 @@ Exim version 4.44
 
 42. Allow both -bf and -bF in the same test run.
 
+43. Did the same fix as 41 above for OpenSSL, which had the same infelicity.
+
 
 Exim version 4.43
 -----------------

diff --git a/src/src/tls-openssl.c b/src/src/tls-openssl.c
index 18165e306287949d5994e98fe226cb11af2c3662..951e46c253c75c48f4829667dfde820639200c02 100644 (file)
--- a/src/src/tls-openssl.c
+++ b/src/src/tls-openssl.c
@@ -1,4 +1,4 @@
-/* $Cambridge: exim/src/src/tls-openssl.c,v 1.1 2004/10/07 10:39:01 ph10 Exp $ */
+/* $Cambridge: exim/src/src/tls-openssl.c,v 1.2 2004/11/25 15:29:37 ph10 Exp $ */
 
 /*************************************************
 *     Exim - an Internet mail transport agent    *
@@ -381,7 +381,8 @@ if (certificate != NULL)
     {
     DEBUG(D_tls) debug_printf("tls_certificate file %s\n", expanded);
     if (!SSL_CTX_use_certificate_chain_file(ctx, CS expanded))
-      return tls_error(US"SSL_CTX_use_certificate_chain_file", host);
+      return tls_error(string_sprintf(
+        "SSL_CTX_use_certificate_chain_file file=%s", expanded), host);
     }
 
   if (privatekey != NULL &&
@@ -392,7 +393,8 @@ if (certificate != NULL)
     {
     DEBUG(D_tls) debug_printf("tls_privatekey file %s\n", expanded);
     if (!SSL_CTX_use_PrivateKey_file(ctx, CS expanded, SSL_FILETYPE_PEM))
-      return tls_error(US"SSL_CTX_use_PrivateKey_file", host);
+      return tls_error(string_sprintf(
+        "SSL_CTX_use_PrivateKey_file file=%s", expanded), host);
     }
   }