Re: lftp-3.5.2 recuring connection in ftps (gnutls)

[Alexander V. Lukyanov]

On Mon, Aug 07, 2006 at 08:08:32PM +1000, Daniel Black wrote:
> ---- Data connection established
> ---> LIST
> **** gnutls_handshake: Insufficient credentials for that request.

This patch should fix it.

--
   Alexander.

Index: ftpclass.cc
===================================================================
RCS file: /home/lav/cvsroot/lftp/src/ftpclass.cc,v
retrieving revision 1.394
diff -u -p -r1.394 ftpclass.cc
--- ftpclass.cc 4 Aug 2006 07:01:00 -0000       1.394
+++ ftpclass.cc 7 Aug 2006 10:27:04 -0000
@@ -2168,6 +2168,8 @@ int   Ftp::Do()
       if(conn->prot=='P')
       {
         lftp_ssl *ssl=new lftp_ssl(conn->data_sock,lftp_ssl::CLIENT,hostname);
+        if(QueryBool("ssl-data-use-keys",hostname) || !conn->control_ssl)
+           ssl->load_keys();
         // share session id between control and data connections.
         if(conn->control_ssl)
            ssl->copy_sid(conn->control_ssl);
Index: resource.cc
===================================================================
RCS file: /home/lav/cvsroot/lftp/src/resource.cc,v
retrieving revision 1.133
diff -u -p -r1.133 resource.cc
--- resource.cc 30 Jun 2006 14:10:30 -0000      1.133
+++ resource.cc 7 Aug 2006 10:28:18 -0000
@@ -220,6 +220,7 @@ static ResType lftp_vars[] = {
    {"ftp:ssl-auth",             "TLS",   AuthArgValidate,0},
    {"ftp:ssl-allow-anonymous",  "no",    ResMgr::BoolValidate,0},
    {"ftp:ssl-use-ccc",          "no",    ResMgr::BoolValidate,0},
+   {"ftp:ssl-data-use-keys",    "yes",   ResMgr::BoolValidate,0},
    {"ftps:initial-prot",        "",      ProtValidate,0},
 #endif
    {"ftp:stat-interval",        "1",     ResMgr::TimeIntervalValidate,0},