From 86005c5bcc7fbb351c95d1f679a63c6bf30175b8 Mon Sep 17 00:00:00 2001
From: speidy <speidy@gmail.com>
Date: Wed, 10 Dec 2014 00:04:38 +0200
Subject: [PATCH] ssl_calls: fix to read certificate chains

---
 common/ssl_calls.c | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/common/ssl_calls.c b/common/ssl_calls.c
index 99e9c50e..ae30fe71 100644
--- a/common/ssl_calls.c
+++ b/common/ssl_calls.c
@@ -649,6 +649,12 @@ ssl_tls_accept(struct ssl_tls *self)
         return 1;
     }
 
+    if (SSL_CTX_use_certificate_chain_file(self->ctx, self->cert) <= 0)
+    {
+        g_writeln("ssl_tls_accept: SSL_CTX_use_certificate_chain_file failed");
+        return 1;
+    }
+
     self->ssl = SSL_new(self->ctx);
 
     if (self->ssl == NULL)
@@ -657,12 +663,6 @@ ssl_tls_accept(struct ssl_tls *self)
         return 1;
     }
 
-    if (SSL_use_certificate_file(self->ssl, self->cert, SSL_FILETYPE_PEM) <= 0)
-    {
-        g_writeln("ssl_tls_accept: SSL_use_certificate_file failed");
-        return 1;
-    }
-
     if (SSL_set_fd(self->ssl, self->trans->sck) < 1)
     {
         g_writeln("ssl_tls_accept: SSL_set_fd failed");