#endif
void tls_global_cleanup(void);
tls_session_t *tls_new_session(TALLOC_CTX *ctx, fr_tls_server_conf_t *conf, REQUEST *request, bool client_cert);
-tls_session_t *tls_new_client_session(fr_tls_server_conf_t *conf, int fd);
+tls_session_t *tls_new_client_session(TALLOC_CTX *ctx, fr_tls_server_conf_t *conf, int fd);
fr_tls_server_conf_t *tls_server_conf_parse(CONF_SECTION *cs);
fr_tls_server_conf_t *tls_client_conf_parse(CONF_SECTION *cs);
SSL_CTX *tls_init_ctx(fr_tls_server_conf_t *conf, int client);
#ifdef WITH_TLS
if ((home->proto == IPPROTO_TCP) && home->tls) {
DEBUG("Trying SSL to port %d\n", home->port);
- sock->ssn = tls_new_client_session(home->tls, this->fd);
+ sock->ssn = tls_new_client_session(sock, home->tls, this->fd);
if (!sock->ssn) {
ERROR("Failed starting SSL to '%s'", buffer);
home->last_failed_open = now;
#endif
-tls_session_t *tls_new_client_session(fr_tls_server_conf_t *conf, int fd)
+tls_session_t *tls_new_client_session(TALLOC_CTX *ctx, fr_tls_server_conf_t *conf, int fd)
{
int verify_mode;
tls_session_t *ssn = NULL;
REQUEST *request;
- ssn = talloc_zero(conf, tls_session_t);
+ ssn = talloc_zero(ctx, tls_session_t);
if (!ssn) return NULL;
ssn->ctx = conf->ctx;