~nutznboltz-deactivatedaccount/ubuntu/precise/gnutls26/fix-lp926350

Committer: Package Import Robot
Author(s): Andreas Metzler
Date: 2011-10-01 15:28:13 UTC
mfrom: (12.1.20 sid)
Revision ID: package-import@ubuntu.com-20111001152813-yygm1c4cxonfxhzy

Tags: 2.12.11-1

http://bugs.debian.org/640639

* New upstream version.
+ Allow CA importing of 0 certificates to succeed. Closes: #640639
* Add libp11-kit-dev to libgnutls-dev dependencies. (see #643811)
* [20_guiledocstring.diff] guile: Fix docstring extraction with CPP 4.5+.

files added:
.pc/17_ignoretestsuitteerrors.diff

.pc/17_ignoretestsuitteerrors.diff/tests

.pc/17_ignoretestsuitteerrors.diff/tests/dsa

.pc/17_ignoretestsuitteerrors.diff/tests/dsa/testdsa

.pc/18_gpgerrorinpkgconfig.diff

.pc/18_gpgerrorinpkgconfig.diff/lib

.pc/18_gpgerrorinpkgconfig.diff/lib/gnutls.pc.in

.pc/20_guiledocstring.diff

.pc/20_guiledocstring.diff/guile

.pc/20_guiledocstring.diff/guile/modules

.pc/20_guiledocstring.diff/guile/modules/system

.pc/20_guiledocstring.diff/guile/modules/system/documentation

.pc/20_guiledocstring.diff/guile/modules/system/documentation/c-snarf.scm

ABOUT-NLS

debian/libgnutls-openssl27.install

debian/libgnutlsxx27.install

debian/patches/17_ignoretestsuitteerrors.diff

debian/patches/18_gpgerrorinpkgconfig.diff

debian/patches/20_guiledocstring.diff

doc/cha-auth.texi

doc/cha-bib.texi

doc/cha-cert-auth.texi

doc/cha-ciphersuites.texi

doc/cha-copying.texi

doc/cha-functions.texi

doc/cha-gtls-app.texi

doc/cha-internals.texi

doc/cha-intro-tls.texi

doc/cha-library.texi

doc/cha-preface.texi

doc/cha-programs.texi

doc/cha-tls-app.texi

doc/examples/ex-cert-select-pkcs11.c

doc/gnutls-crypto-layers.dia

doc/gnutls-crypto-layers.eps

doc/gnutls-crypto-layers.pdf

doc/gnutls-crypto-layers.png

doc/manpages/gnutls_certificate_get_issuer.3

doc/manpages/gnutls_certificate_set_retrieve_function.3

doc/manpages/gnutls_cipher_decrypt2.3

doc/manpages/gnutls_cipher_encrypt2.3

doc/manpages/gnutls_global_set_mutex.3

doc/manpages/gnutls_global_set_time_function.3

doc/manpages/gnutls_openpgp_privkey_sec_param.3

doc/manpages/gnutls_pk_bits_to_sec_param.3

doc/manpages/gnutls_pkcs11_add_provider.3

doc/manpages/gnutls_pkcs11_copy_secret_key.3

doc/manpages/gnutls_pkcs11_copy_x509_crt.3

doc/manpages/gnutls_pkcs11_copy_x509_privkey.3

doc/manpages/gnutls_pkcs11_deinit.3

doc/manpages/gnutls_pkcs11_delete_url.3

doc/manpages/gnutls_pkcs11_init.3

doc/manpages/gnutls_pkcs11_obj_deinit.3

doc/manpages/gnutls_pkcs11_obj_export.3

doc/manpages/gnutls_pkcs11_obj_export_url.3

doc/manpages/gnutls_pkcs11_obj_get_info.3

doc/manpages/gnutls_pkcs11_obj_get_type.3

doc/manpages/gnutls_pkcs11_obj_import_url.3

doc/manpages/gnutls_pkcs11_obj_init.3

doc/manpages/gnutls_pkcs11_obj_list_import_url.3

doc/manpages/gnutls_pkcs11_privkey_deinit.3

doc/manpages/gnutls_pkcs11_privkey_export_url.3

doc/manpages/gnutls_pkcs11_privkey_get_info.3

doc/manpages/gnutls_pkcs11_privkey_get_pk_algorithm.3

doc/manpages/gnutls_pkcs11_privkey_import_url.3

doc/manpages/gnutls_pkcs11_privkey_init.3

doc/manpages/gnutls_pkcs11_set_pin_function.3

doc/manpages/gnutls_pkcs11_set_token_function.3

doc/manpages/gnutls_pkcs11_token_get_flags.3

doc/manpages/gnutls_pkcs11_token_get_info.3

doc/manpages/gnutls_pkcs11_token_get_mechanism.3

doc/manpages/gnutls_pkcs11_token_get_url.3

doc/manpages/gnutls_pkcs11_token_init.3

doc/manpages/gnutls_pkcs11_token_set_pin.3

doc/manpages/gnutls_privkey_decrypt_data.3

doc/manpages/gnutls_privkey_deinit.3

doc/manpages/gnutls_privkey_get_pk_algorithm.3

doc/manpages/gnutls_privkey_get_type.3

doc/manpages/gnutls_privkey_import_openpgp.3

doc/manpages/gnutls_privkey_import_pkcs11.3

doc/manpages/gnutls_privkey_import_x509.3

doc/manpages/gnutls_privkey_init.3

doc/manpages/gnutls_privkey_sign_data.3

doc/manpages/gnutls_privkey_sign_hash.3

doc/manpages/gnutls_pubkey_deinit.3

doc/manpages/gnutls_pubkey_export.3

doc/manpages/gnutls_pubkey_get_key_id.3

doc/manpages/gnutls_pubkey_get_key_usage.3

doc/manpages/gnutls_pubkey_get_pk_algorithm.3

doc/manpages/gnutls_pubkey_get_pk_dsa_raw.3

doc/manpages/gnutls_pubkey_get_pk_rsa_raw.3

doc/manpages/gnutls_pubkey_get_preferred_hash_algorithm.3

doc/manpages/gnutls_pubkey_get_verify_algorithm.3

doc/manpages/gnutls_pubkey_import.3

doc/manpages/gnutls_pubkey_import_dsa_raw.3

doc/manpages/gnutls_pubkey_import_openpgp.3

doc/manpages/gnutls_pubkey_import_pkcs11.3

doc/manpages/gnutls_pubkey_import_pkcs11_url.3

doc/manpages/gnutls_pubkey_import_privkey.3

doc/manpages/gnutls_pubkey_import_rsa_raw.3

doc/manpages/gnutls_pubkey_import_x509.3

doc/manpages/gnutls_pubkey_init.3

doc/manpages/gnutls_pubkey_set_key_usage.3

doc/manpages/gnutls_pubkey_verify_data.3

doc/manpages/gnutls_pubkey_verify_hash.3

doc/manpages/gnutls_rnd.3

doc/manpages/gnutls_sec_param_get_name.3

doc/manpages/gnutls_sec_param_to_pk_bits.3

doc/manpages/gnutls_session_channel_binding.3

doc/manpages/gnutls_transport_set_errno_function.3

doc/manpages/gnutls_transport_set_vec_push_function.3

doc/manpages/gnutls_x509_crl_get_raw_issuer_dn.3

doc/manpages/gnutls_x509_crl_privkey_sign.3

doc/manpages/gnutls_x509_crq_privkey_sign.3

doc/manpages/gnutls_x509_crq_set_pubkey.3

doc/manpages/gnutls_x509_crq_verify.3

doc/manpages/gnutls_x509_crt_get_issuer_unique_id.3

doc/manpages/gnutls_x509_crt_get_preferred_hash_algorithm.3

doc/manpages/gnutls_x509_crt_get_subject_unique_id.3

doc/manpages/gnutls_x509_crt_import_pkcs11.3

doc/manpages/gnutls_x509_crt_import_pkcs11_url.3

doc/manpages/gnutls_x509_crt_list_import_pkcs11.3

doc/manpages/gnutls_x509_crt_privkey_sign.3

doc/manpages/gnutls_x509_crt_set_pubkey.3

doc/manpages/gnutls_x509_privkey_export_rsa_raw2.3

doc/manpages/gnutls_x509_privkey_import_rsa_raw2.3

doc/manpages/gnutls_x509_privkey_sec_param.3

doc/manpages/p11tool.1

doc/pkcs11-vision.dia

doc/pkcs11-vision.eps

doc/pkcs11-vision.pdf

doc/pkcs11-vision.png

doc/reference/html/api-index-2-12-0.html

doc/reference/html/gnutls-pkcs11.html

doc/reference/tmpl/abstract.sgml

doc/reference/tmpl/binary-io.sgml

doc/reference/tmpl/dlopen.sgml

doc/reference/tmpl/fcntl.in.sgml

doc/reference/tmpl/fcntl.sgml

doc/reference/tmpl/locks.sgml

doc/reference/tmpl/pakchois.sgml

doc/reference/tmpl/pakchois11.sgml

doc/reference/tmpl/pkcs11.sgml

doc/reference/tmpl/pkcs11_int.sgml

doc/reference/tmpl/system.sgml

gl/ftello.c

gl/m4/fcntl-o.m4

gl/m4/fcntl_h.m4

gl/m4/ftello.m4

gl/m4/getpagesize.m4

gl/m4/pipe.m4

gl/m4/socketlib.m4

gl/malloc.c

gl/tests/binary-io.h

gl/tests/fcntl.in.h

gl/tests/getpagesize.c

gl/tests/pipe.c

gl/tests/test-binary-io.c

gl/tests/test-binary-io.sh

gl/tests/test-fcntl-h.c

gl/tests/test-ftello.c

gl/tests/test-ftello.sh

gl/tests/test-ftello2.sh

gl/tests/test-ftello3.c

gl/tests/test-pipe.c

gl/tests/test-sys_wait.h

gl/verify.h

guile/modules/gnutls/build/tests.scm

guile/tests/dh-parameters.pem

guile/tests/openpgp-elg-pub.asc

guile/tests/openpgp-elg-sec.asc

lib/abstract_int.h

lib/build-aux/snippet

lib/build-aux/snippet/_Noreturn.h

lib/build-aux/snippet/arg-nonnull.h

lib/build-aux/snippet/c++defs.h

lib/build-aux/snippet/warn-on-use.h

lib/gcrypt

lib/gcrypt/Makefile.am

lib/gcrypt/Makefile.in

lib/gcrypt/cipher.c

lib/gcrypt/init.c

lib/gcrypt/mac.c

lib/gcrypt/mpi.c

lib/gcrypt/pk.c

lib/gcrypt/rnd.c

lib/gl/fd-hook.c

lib/gl/fd-hook.h

lib/gl/float.c

lib/gl/fseek.c

lib/gl/ftell.c

lib/gl/ftello.c

lib/gl/m4/fcntl-o.m4

lib/gl/m4/fcntl_h.m4

lib/gl/m4/fpieee.m4

lib/gl/m4/fseek.m4

lib/gl/m4/ftell.m4

lib/gl/m4/ftello.m4

lib/gl/m4/getpagesize.m4

lib/gl/m4/inttypes.m4

lib/gl/m4/largefile.m4

lib/gl/m4/socketlib.m4

lib/gl/m4/sys_uio_h.m4

lib/gl/malloc.c

lib/gl/sys_uio.in.h

lib/gl/tests/binary-io.h

lib/gl/tests/fcntl.in.h

lib/gl/tests/fpucw.h

lib/gl/tests/getpagesize.c

lib/gl/tests/inttypes.in.h

lib/gl/tests/test-binary-io.c

lib/gl/tests/test-binary-io.sh

lib/gl/tests/test-fcntl-h.c

lib/gl/tests/test-float.c

lib/gl/tests/test-fseek.c

lib/gl/tests/test-fseek.sh

lib/gl/tests/test-fseek2.sh

lib/gl/tests/test-fseeko3.c

lib/gl/tests/test-fseeko3.sh

lib/gl/tests/test-ftell.c

lib/gl/tests/test-ftell.sh

lib/gl/tests/test-ftell2.sh

lib/gl/tests/test-ftell3.c

lib/gl/tests/test-ftello.c

lib/gl/tests/test-ftello.sh

lib/gl/tests/test-ftello2.sh

lib/gl/tests/test-ftello3.c

lib/gl/tests/test-intprops.c

lib/gl/tests/test-inttypes.c

lib/gl/tests/test-sys_uio.c

lib/gl/tests/test-sys_wait.h

lib/gl/verify.h

lib/gnutls_mbuffers.c

lib/gnutls_mbuffers.h

lib/gnutls_privkey.c

lib/gnutls_pubkey.c

lib/includes/gnutls/abstract.h

lib/includes/gnutls/pkcs11.h

lib/locks.c

lib/locks.h

lib/m4/inttypes-pri.m4

lib/nettle

lib/nettle/Makefile.am

lib/nettle/Makefile.in

lib/nettle/cipher.c

lib/nettle/egd.c

lib/nettle/egd.h

lib/nettle/init.c

lib/nettle/mac.c

lib/nettle/mpi.c

lib/nettle/pk.c

lib/nettle/rnd.c

lib/pkcs11.c

lib/pkcs11_int.h

lib/pkcs11_privkey.c

lib/pkcs11_secret.c

lib/pkcs11_write.c

lib/system.c

lib/system.h

m4/inttypes_h.m4

m4/lib-ld.m4

m4/lib-link.m4

m4/lib-prefix.m4

m4/longlong.m4

m4/po.m4

m4/size_max.m4

m4/stdint_h.m4

m4/ulonglong.m4

m4/wchar_t.m4

m4/wint_t.m4

m4/xsize.m4

src/certtool-common.c

src/p11common.c

src/p11common.h

src/p11tool-gaa.c

src/p11tool-gaa.h

src/p11tool.c

src/p11tool.gaa

src/p11tool.h

src/pkcs11.c

tests/certuniqueid.c

tests/dsa

tests/dsa/Makefile.am

tests/dsa/Makefile.in

tests/dsa/cert.dsa.1024.pem

tests/dsa/cert.dsa.2048.pem

tests/dsa/cert.dsa.3072.pem

tests/dsa/dsa.1024.pem

tests/dsa/dsa.2048.pem

tests/dsa/dsa.3072.pem

tests/dsa/testdsa

tests/eagain-common.h

tests/openpgp-auth.c

tests/rng-fork.c

tests/sha2/key-ca-dsa.pem

tests/sha2/key-dsa.pem

tests/sha2/key-subca-dsa.pem

tests/sha2/sha2-dsa

tests/suite

tests/suite/Makefile.am

tests/suite/Makefile.in

tests/suite/README

tests/x509cert.c

files removed:
.pc/20_gcrypt15compat.diff

.pc/20_gcrypt15compat.diff/lib

.pc/20_gcrypt15compat.diff/lib/pk-libgcrypt.c

.pc/debian-changes-2.8.6-1ubuntu1

.pc/debian-changes-2.8.6-1ubuntu1/doc

.pc/debian-changes-2.8.6-1ubuntu1/doc/examples

.pc/debian-changes-2.8.6-1ubuntu1/doc/examples/Makefile.am

.pc/debian-changes-2.8.6-1ubuntu1/doc/examples/Makefile.in

debian/libgnutlsxx26.install

debian/patches/20_gcrypt15compat.diff

debian/patches/debian-changes-2.8.6-1ubuntu1

doc/README.gaa

doc/examples/ex-client-tlsia.c

doc/examples/ex-serv-export.c

doc/manpages/gnutls_oprfi_enable_client.3

doc/manpages/gnutls_oprfi_enable_server.3

doc/manpages/gnutls_session_get_client_random.3

doc/manpages/gnutls_session_get_master_secret.3

doc/manpages/gnutls_session_get_server_random.3

doc/manpages/gnutls_session_set_finished_function.3

doc/reference/gnutls.pdf

gl/m4/inttypes_h.m4

gl/m4/lib-ld.m4

gl/m4/lib-link.m4

gl/m4/lib-prefix.m4

gl/m4/longlong.m4

gl/m4/size_max.m4

gl/m4/stdint_h.m4

gl/m4/wchar_h.m4

gl/m4/wchar_t.m4

gl/m4/wint_t.m4

gl/m4/xsize.m4

gl/tests/test-wchar.c

gl/tests/verify.h

gl/wchar.in.h

lib/build-aux/arg-nonnull.h

lib/build-aux/c++defs.h

lib/build-aux/warn-on-use.h

lib/cipher-libgcrypt.c

lib/ext_oprfi.c

lib/ext_oprfi.h

lib/gl/close-hook.c

lib/gl/close-hook.h

lib/gl/m4/asm-underscore.m4

lib/gl/m4/po.m4

lib/gl/stdio-write.c

lib/gl/tests/verify.h

lib/mac-libgcrypt.c

lib/mpi-libgcrypt.c

lib/opencdk/verify.c

lib/pk-libgcrypt.c

lib/rnd-libgcrypt.c

tests/finished.c

tests/netconf-psk.c

tests/oprfi.c

tests/safe-renegotiation/params.dh

tests/safe-renegotiation/srn6.c

tests/safe-renegotiation/srn7.c

tests/safe-renegotiation/testsrn

tests/tlsia.c

tests/x509signself.c

files modified:
.pc/16_unnecessarydep.diff/configure

.pc/16_unnecessarydep.diff/lib/configure

.pc/16_unnecessarydep.diff/libextra/configure

.pc/applied-patches

AUTHORS

ChangeLog

GNUmakefile

Makefile.in

NEWS

README

THANKS

aclocal.m4

build-aux/arg-nonnull.h

build-aux/c++defs.h

build-aux/config.guess

build-aux/config.rpath

build-aux/config.sub

build-aux/gendocs.sh

build-aux/ltmain.sh

build-aux/pmccabe.css

build-aux/pmccabe2html

build-aux/update-copyright

build-aux/useless-if-before-free

build-aux/vc-list-files

build-aux/warn-on-use.h

cfg.mk

config.h.in

configure

configure.ac

debian/changelog

debian/control

debian/copyright

debian/gnutls-bin.install

debian/libgnutls-dev.install

debian/libgnutls26.install

debian/patches/series

debian/rules

doc/Makefile.am

doc/Makefile.in

doc/TODO

doc/algorithms.texi

doc/credentials/Makefile.in

doc/credentials/gnutls-http-serv

doc/credentials/openpgp/Makefile.in

doc/credentials/srp/Makefile.in

doc/credentials/x509-server-dsa.pem

doc/credentials/x509-server-key-dsa.pem

doc/credentials/x509/Makefile.in

doc/credentials/x509/key.pem

doc/cyclo/Makefile.in

doc/cyclo/cyclo-gnutls.html

doc/errcodes.c

doc/error_codes.texi

doc/examples/Makefile.am

doc/examples/Makefile.in

doc/examples/ex-alert.c

doc/examples/ex-cert-select.c

doc/examples/ex-client-psk.c

doc/examples/ex-client-resume.c

doc/examples/ex-client-srp.c

doc/examples/ex-client1.c

doc/examples/ex-client2.c

doc/examples/ex-crq.c

doc/examples/ex-cxx.cpp

doc/examples/ex-pkcs12.c

doc/examples/ex-rfc2818.c

doc/examples/ex-serv-anon.c

doc/examples/ex-serv-pgp.c

doc/examples/ex-serv-psk.c

doc/examples/ex-serv-srp.c

doc/examples/ex-serv1.c

doc/examples/ex-session-info.c

doc/examples/ex-verify.c

doc/examples/ex-x509-info.c

doc/examples/examples.h

doc/examples/tcp.c

doc/fdl-1.3.texi

doc/gnutls-api.texi

doc/gnutls.html

doc/gnutls.info

doc/gnutls.info-1

doc/gnutls.info-2

doc/gnutls.info-3

doc/gnutls.pdf

doc/gnutls.ps

doc/gnutls.texi

doc/ia-api.texi

doc/manpages/Makefile.am

doc/manpages/Makefile.in

doc/manpages/certtool.1

doc/manpages/gnutls-cli.1

doc/manpages/gnutls-serv.1

doc/manpages/gnutls_alert_get.3

doc/manpages/gnutls_alert_get_name.3

doc/manpages/gnutls_alert_send.3

doc/manpages/gnutls_alert_send_appropriate.3

doc/manpages/gnutls_anon_allocate_client_credentials.3

doc/manpages/gnutls_anon_allocate_server_credentials.3

doc/manpages/gnutls_anon_free_client_credentials.3

doc/manpages/gnutls_anon_free_server_credentials.3

doc/manpages/gnutls_anon_set_params_function.3

doc/manpages/gnutls_anon_set_server_dh_params.3

doc/manpages/gnutls_anon_set_server_params_function.3

doc/manpages/gnutls_auth_client_get_type.3

doc/manpages/gnutls_auth_get_type.3

doc/manpages/gnutls_auth_server_get_type.3

doc/manpages/gnutls_bye.3

doc/manpages/gnutls_certificate_activation_time_peers.3

doc/manpages/gnutls_certificate_allocate_credentials.3

doc/manpages/gnutls_certificate_client_get_request_status.3

doc/manpages/gnutls_certificate_client_set_retrieve_function.3

doc/manpages/gnutls_certificate_expiration_time_peers.3

doc/manpages/gnutls_certificate_free_ca_names.3

doc/manpages/gnutls_certificate_free_cas.3

doc/manpages/gnutls_certificate_free_credentials.3

doc/manpages/gnutls_certificate_free_crls.3

doc/manpages/gnutls_certificate_free_keys.3

doc/manpages/gnutls_certificate_get_openpgp_keyring.3

doc/manpages/gnutls_certificate_get_ours.3

doc/manpages/gnutls_certificate_get_peers.3

doc/manpages/gnutls_certificate_get_x509_cas.3

doc/manpages/gnutls_certificate_get_x509_crls.3

doc/manpages/gnutls_certificate_send_x509_rdn_sequence.3

doc/manpages/gnutls_certificate_server_set_request.3

doc/manpages/gnutls_certificate_server_set_retrieve_function.3

doc/manpages/gnutls_certificate_set_dh_params.3

doc/manpages/gnutls_certificate_set_openpgp_key.3

doc/manpages/gnutls_certificate_set_openpgp_key_file.3

doc/manpages/gnutls_certificate_set_openpgp_key_file2.3

doc/manpages/gnutls_certificate_set_openpgp_key_mem.3

doc/manpages/gnutls_certificate_set_openpgp_key_mem2.3

doc/manpages/gnutls_certificate_set_openpgp_keyring_file.3

doc/manpages/gnutls_certificate_set_openpgp_keyring_mem.3

doc/manpages/gnutls_certificate_set_params_function.3

doc/manpages/gnutls_certificate_set_rsa_export_params.3

doc/manpages/gnutls_certificate_set_verify_flags.3

doc/manpages/gnutls_certificate_set_verify_function.3

doc/manpages/gnutls_certificate_set_verify_limits.3

doc/manpages/gnutls_certificate_set_x509_crl.3

doc/manpages/gnutls_certificate_set_x509_crl_file.3

doc/manpages/gnutls_certificate_set_x509_crl_mem.3

doc/manpages/gnutls_certificate_set_x509_key.3

doc/manpages/gnutls_certificate_set_x509_key_file.3

doc/manpages/gnutls_certificate_set_x509_key_mem.3

doc/manpages/gnutls_certificate_set_x509_simple_pkcs12_file.3

doc/manpages/gnutls_certificate_set_x509_simple_pkcs12_mem.3

doc/manpages/gnutls_certificate_set_x509_trust.3

doc/manpages/gnutls_certificate_set_x509_trust_file.3

doc/manpages/gnutls_certificate_set_x509_trust_mem.3

doc/manpages/gnutls_certificate_type_get.3

doc/manpages/gnutls_certificate_type_get_id.3

doc/manpages/gnutls_certificate_type_get_name.3

doc/manpages/gnutls_certificate_type_list.3

doc/manpages/gnutls_certificate_type_set_priority.3

doc/manpages/gnutls_certificate_verify_peers.3

doc/manpages/gnutls_certificate_verify_peers2.3

doc/manpages/gnutls_check_version.3

doc/manpages/gnutls_cipher_decrypt.3

doc/manpages/gnutls_cipher_deinit.3

doc/manpages/gnutls_cipher_encrypt.3

doc/manpages/gnutls_cipher_get.3

doc/manpages/gnutls_cipher_get_block_size.3

doc/manpages/gnutls_cipher_get_id.3

doc/manpages/gnutls_cipher_get_key_size.3

doc/manpages/gnutls_cipher_get_name.3

doc/manpages/gnutls_cipher_init.3

doc/manpages/gnutls_cipher_list.3

doc/manpages/gnutls_cipher_set_priority.3

doc/manpages/gnutls_cipher_suite_get_name.3

doc/manpages/gnutls_cipher_suite_info.3

doc/manpages/gnutls_compression_get.3

doc/manpages/gnutls_compression_get_id.3

doc/manpages/gnutls_compression_get_name.3

doc/manpages/gnutls_compression_list.3

doc/manpages/gnutls_compression_set_priority.3

doc/manpages/gnutls_credentials_clear.3

doc/manpages/gnutls_credentials_set.3

doc/manpages/gnutls_crypto_bigint_register2.3

doc/manpages/gnutls_crypto_cipher_register2.3

doc/manpages/gnutls_crypto_digest_register2.3

doc/manpages/gnutls_crypto_mac_register2.3

doc/manpages/gnutls_crypto_pk_register2.3

doc/manpages/gnutls_crypto_rnd_register2.3

doc/manpages/gnutls_crypto_single_cipher_register2.3

doc/manpages/gnutls_crypto_single_digest_register2.3

doc/manpages/gnutls_crypto_single_mac_register2.3

doc/manpages/gnutls_db_check_entry.3

doc/manpages/gnutls_db_get_ptr.3

doc/manpages/gnutls_db_remove_session.3

doc/manpages/gnutls_db_set_cache_expiration.3

doc/manpages/gnutls_db_set_ptr.3

doc/manpages/gnutls_db_set_remove_function.3

doc/manpages/gnutls_db_set_retrieve_function.3

doc/manpages/gnutls_db_set_store_function.3

doc/manpages/gnutls_deinit.3

doc/manpages/gnutls_dh_get_group.3

doc/manpages/gnutls_dh_get_peers_public_bits.3

doc/manpages/gnutls_dh_get_prime_bits.3

doc/manpages/gnutls_dh_get_pubkey.3

doc/manpages/gnutls_dh_get_secret_bits.3

doc/manpages/gnutls_dh_params_cpy.3

doc/manpages/gnutls_dh_params_deinit.3

doc/manpages/gnutls_dh_params_export_pkcs3.3

doc/manpages/gnutls_dh_params_export_raw.3

doc/manpages/gnutls_dh_params_generate2.3

doc/manpages/gnutls_dh_params_import_pkcs3.3

doc/manpages/gnutls_dh_params_import_raw.3

doc/manpages/gnutls_dh_params_init.3

doc/manpages/gnutls_dh_set_prime_bits.3

doc/manpages/gnutls_error_is_fatal.3

doc/manpages/gnutls_error_to_alert.3

doc/manpages/gnutls_ext_register.3

doc/manpages/gnutls_extra_check_version.3

doc/manpages/gnutls_fingerprint.3

doc/manpages/gnutls_free.3

doc/manpages/gnutls_global_deinit.3

doc/manpages/gnutls_global_init.3

doc/manpages/gnutls_global_init_extra.3

doc/manpages/gnutls_global_set_log_function.3

doc/manpages/gnutls_global_set_log_level.3

doc/manpages/gnutls_global_set_mem_functions.3

doc/manpages/gnutls_handshake.3

doc/manpages/gnutls_handshake_get_last_in.3

doc/manpages/gnutls_handshake_get_last_out.3

doc/manpages/gnutls_handshake_set_max_packet_length.3

doc/manpages/gnutls_handshake_set_post_client_hello_function.3

doc/manpages/gnutls_handshake_set_private_extensions.3

doc/manpages/gnutls_hash.3

doc/manpages/gnutls_hash_deinit.3

doc/manpages/gnutls_hash_fast.3

doc/manpages/gnutls_hash_get_len.3

doc/manpages/gnutls_hash_init.3

doc/manpages/gnutls_hash_output.3

doc/manpages/gnutls_hex2bin.3

doc/manpages/gnutls_hex_decode.3

doc/manpages/gnutls_hex_encode.3

doc/manpages/gnutls_hmac.3

doc/manpages/gnutls_hmac_deinit.3

doc/manpages/gnutls_hmac_fast.3

doc/manpages/gnutls_hmac_get_len.3

doc/manpages/gnutls_hmac_init.3

doc/manpages/gnutls_hmac_output.3

doc/manpages/gnutls_ia_allocate_client_credentials.3

doc/manpages/gnutls_ia_allocate_server_credentials.3

doc/manpages/gnutls_ia_enable.3

doc/manpages/gnutls_ia_endphase_send.3

doc/manpages/gnutls_ia_extract_inner_secret.3

doc/manpages/gnutls_ia_free_client_credentials.3

doc/manpages/gnutls_ia_free_server_credentials.3

doc/manpages/gnutls_ia_generate_challenge.3

doc/manpages/gnutls_ia_get_client_avp_ptr.3

doc/manpages/gnutls_ia_get_server_avp_ptr.3

doc/manpages/gnutls_ia_handshake.3

doc/manpages/gnutls_ia_handshake_p.3

doc/manpages/gnutls_ia_permute_inner_secret.3

doc/manpages/gnutls_ia_recv.3

doc/manpages/gnutls_ia_send.3

doc/manpages/gnutls_ia_set_client_avp_function.3

doc/manpages/gnutls_ia_set_client_avp_ptr.3

doc/manpages/gnutls_ia_set_server_avp_function.3

doc/manpages/gnutls_ia_set_server_avp_ptr.3

doc/manpages/gnutls_ia_verify_endphase.3

doc/manpages/gnutls_init.3

doc/manpages/gnutls_kx_get.3

doc/manpages/gnutls_kx_get_id.3

doc/manpages/gnutls_kx_get_name.3

doc/manpages/gnutls_kx_list.3

doc/manpages/gnutls_kx_set_priority.3

doc/manpages/gnutls_mac_get.3

doc/manpages/gnutls_mac_get_id.3

doc/manpages/gnutls_mac_get_key_size.3

doc/manpages/gnutls_mac_get_name.3

doc/manpages/gnutls_mac_list.3

doc/manpages/gnutls_mac_set_priority.3

doc/manpages/gnutls_malloc.3

doc/manpages/gnutls_openpgp_crt_check_hostname.3

doc/manpages/gnutls_openpgp_crt_deinit.3

doc/manpages/gnutls_openpgp_crt_export.3

doc/manpages/gnutls_openpgp_crt_get_auth_subkey.3

doc/manpages/gnutls_openpgp_crt_get_creation_time.3

doc/manpages/gnutls_openpgp_crt_get_expiration_time.3

doc/manpages/gnutls_openpgp_crt_get_fingerprint.3

doc/manpages/gnutls_openpgp_crt_get_key_id.3

doc/manpages/gnutls_openpgp_crt_get_key_usage.3

doc/manpages/gnutls_openpgp_crt_get_name.3

doc/manpages/gnutls_openpgp_crt_get_pk_algorithm.3

doc/manpages/gnutls_openpgp_crt_get_pk_dsa_raw.3

doc/manpages/gnutls_openpgp_crt_get_pk_rsa_raw.3

doc/manpages/gnutls_openpgp_crt_get_preferred_key_id.3

doc/manpages/gnutls_openpgp_crt_get_revoked_status.3

doc/manpages/gnutls_openpgp_crt_get_subkey_count.3

doc/manpages/gnutls_openpgp_crt_get_subkey_creation_time.3

doc/manpages/gnutls_openpgp_crt_get_subkey_expiration_time.3

doc/manpages/gnutls_openpgp_crt_get_subkey_fingerprint.3

doc/manpages/gnutls_openpgp_crt_get_subkey_id.3

doc/manpages/gnutls_openpgp_crt_get_subkey_idx.3

doc/manpages/gnutls_openpgp_crt_get_subkey_pk_algorithm.3

doc/manpages/gnutls_openpgp_crt_get_subkey_pk_dsa_raw.3

doc/manpages/gnutls_openpgp_crt_get_subkey_pk_rsa_raw.3

doc/manpages/gnutls_openpgp_crt_get_subkey_revoked_status.3

doc/manpages/gnutls_openpgp_crt_get_subkey_usage.3

doc/manpages/gnutls_openpgp_crt_get_version.3

doc/manpages/gnutls_openpgp_crt_import.3

doc/manpages/gnutls_openpgp_crt_init.3

doc/manpages/gnutls_openpgp_crt_print.3

doc/manpages/gnutls_openpgp_crt_set_preferred_key_id.3

doc/manpages/gnutls_openpgp_crt_verify_ring.3

doc/manpages/gnutls_openpgp_crt_verify_self.3

doc/manpages/gnutls_openpgp_keyring_check_id.3

doc/manpages/gnutls_openpgp_keyring_deinit.3

doc/manpages/gnutls_openpgp_keyring_get_crt.3

doc/manpages/gnutls_openpgp_keyring_get_crt_count.3

doc/manpages/gnutls_openpgp_keyring_import.3

doc/manpages/gnutls_openpgp_keyring_init.3

doc/manpages/gnutls_openpgp_privkey_deinit.3

doc/manpages/gnutls_openpgp_privkey_export.3

doc/manpages/gnutls_openpgp_privkey_export_dsa_raw.3

doc/manpages/gnutls_openpgp_privkey_export_rsa_raw.3

doc/manpages/gnutls_openpgp_privkey_export_subkey_dsa_raw.3

doc/manpages/gnutls_openpgp_privkey_export_subkey_rsa_raw.3

doc/manpages/gnutls_openpgp_privkey_get_fingerprint.3

doc/manpages/gnutls_openpgp_privkey_get_key_id.3

doc/manpages/gnutls_openpgp_privkey_get_pk_algorithm.3

doc/manpages/gnutls_openpgp_privkey_get_preferred_key_id.3

doc/manpages/gnutls_openpgp_privkey_get_revoked_status.3

doc/manpages/gnutls_openpgp_privkey_get_subkey_count.3

doc/manpages/gnutls_openpgp_privkey_get_subkey_creation_time.3

doc/manpages/gnutls_openpgp_privkey_get_subkey_expiration_time.3

doc/manpages/gnutls_openpgp_privkey_get_subkey_fingerprint.3

doc/manpages/gnutls_openpgp_privkey_get_subkey_id.3

doc/manpages/gnutls_openpgp_privkey_get_subkey_idx.3

doc/manpages/gnutls_openpgp_privkey_get_subkey_pk_algorithm.3

doc/manpages/gnutls_openpgp_privkey_get_subkey_revoked_status.3

doc/manpages/gnutls_openpgp_privkey_import.3

doc/manpages/gnutls_openpgp_privkey_init.3

doc/manpages/gnutls_openpgp_privkey_set_preferred_key_id.3

doc/manpages/gnutls_openpgp_privkey_sign_hash.3

doc/manpages/gnutls_openpgp_send_cert.3

doc/manpages/gnutls_openpgp_set_recv_key_function.3

doc/manpages/gnutls_pem_base64_decode.3

doc/manpages/gnutls_pem_base64_decode_alloc.3

doc/manpages/gnutls_pem_base64_encode.3

doc/manpages/gnutls_pem_base64_encode_alloc.3

doc/manpages/gnutls_perror.3

doc/manpages/gnutls_pk_algorithm_get_name.3

doc/manpages/gnutls_pk_get_id.3

doc/manpages/gnutls_pk_get_name.3

doc/manpages/gnutls_pk_list.3

doc/manpages/gnutls_pkcs12_bag_decrypt.3

doc/manpages/gnutls_pkcs12_bag_deinit.3

doc/manpages/gnutls_pkcs12_bag_encrypt.3

doc/manpages/gnutls_pkcs12_bag_get_count.3

doc/manpages/gnutls_pkcs12_bag_get_data.3

doc/manpages/gnutls_pkcs12_bag_get_friendly_name.3

doc/manpages/gnutls_pkcs12_bag_get_key_id.3

doc/manpages/gnutls_pkcs12_bag_get_type.3

doc/manpages/gnutls_pkcs12_bag_init.3

doc/manpages/gnutls_pkcs12_bag_set_crl.3

doc/manpages/gnutls_pkcs12_bag_set_crt.3

doc/manpages/gnutls_pkcs12_bag_set_data.3

doc/manpages/gnutls_pkcs12_bag_set_friendly_name.3

doc/manpages/gnutls_pkcs12_bag_set_key_id.3

doc/manpages/gnutls_pkcs12_deinit.3

doc/manpages/gnutls_pkcs12_export.3

doc/manpages/gnutls_pkcs12_generate_mac.3

doc/manpages/gnutls_pkcs12_get_bag.3

doc/manpages/gnutls_pkcs12_import.3

doc/manpages/gnutls_pkcs12_init.3

doc/manpages/gnutls_pkcs12_set_bag.3

doc/manpages/gnutls_pkcs12_verify_mac.3

doc/manpages/gnutls_pkcs7_deinit.3

doc/manpages/gnutls_pkcs7_delete_crl.3

doc/manpages/gnutls_pkcs7_delete_crt.3

doc/manpages/gnutls_pkcs7_export.3

doc/manpages/gnutls_pkcs7_get_crl_count.3

doc/manpages/gnutls_pkcs7_get_crl_raw.3

doc/manpages/gnutls_pkcs7_get_crt_count.3

doc/manpages/gnutls_pkcs7_get_crt_raw.3

doc/manpages/gnutls_pkcs7_import.3

doc/manpages/gnutls_pkcs7_init.3

doc/manpages/gnutls_pkcs7_set_crl.3

doc/manpages/gnutls_pkcs7_set_crl_raw.3

doc/manpages/gnutls_pkcs7_set_crt.3

doc/manpages/gnutls_pkcs7_set_crt_raw.3

doc/manpages/gnutls_prf.3

doc/manpages/gnutls_prf_raw.3

doc/manpages/gnutls_priority_deinit.3

doc/manpages/gnutls_priority_init.3

doc/manpages/gnutls_priority_set.3

doc/manpages/gnutls_priority_set_direct.3

doc/manpages/gnutls_protocol_get_id.3

doc/manpages/gnutls_protocol_get_name.3

doc/manpages/gnutls_protocol_get_version.3

doc/manpages/gnutls_protocol_list.3

doc/manpages/gnutls_protocol_set_priority.3

doc/manpages/gnutls_psk_allocate_client_credentials.3

doc/manpages/gnutls_psk_allocate_server_credentials.3

doc/manpages/gnutls_psk_client_get_hint.3

doc/manpages/gnutls_psk_free_client_credentials.3

doc/manpages/gnutls_psk_free_server_credentials.3

doc/manpages/gnutls_psk_netconf_derive_key.3

doc/manpages/gnutls_psk_server_get_username.3

doc/manpages/gnutls_psk_set_client_credentials.3

doc/manpages/gnutls_psk_set_client_credentials_function.3

doc/manpages/gnutls_psk_set_params_function.3

doc/manpages/gnutls_psk_set_server_credentials_file.3

doc/manpages/gnutls_psk_set_server_credentials_function.3

doc/manpages/gnutls_psk_set_server_credentials_hint.3

doc/manpages/gnutls_psk_set_server_dh_params.3

doc/manpages/gnutls_psk_set_server_params_function.3

doc/manpages/gnutls_record_check_pending.3

doc/manpages/gnutls_record_disable_padding.3

doc/manpages/gnutls_record_get_direction.3

doc/manpages/gnutls_record_get_max_size.3

doc/manpages/gnutls_record_recv.3

doc/manpages/gnutls_record_send.3

doc/manpages/gnutls_record_set_max_size.3

doc/manpages/gnutls_register_md5_handler.3

doc/manpages/gnutls_rehandshake.3

doc/manpages/gnutls_rsa_export_get_modulus_bits.3

doc/manpages/gnutls_rsa_export_get_pubkey.3

doc/manpages/gnutls_rsa_params_cpy.3

doc/manpages/gnutls_rsa_params_deinit.3

doc/manpages/gnutls_rsa_params_export_pkcs1.3

doc/manpages/gnutls_rsa_params_export_raw.3

doc/manpages/gnutls_rsa_params_generate2.3

doc/manpages/gnutls_rsa_params_import_pkcs1.3

doc/manpages/gnutls_rsa_params_import_raw.3

doc/manpages/gnutls_rsa_params_init.3

doc/manpages/gnutls_safe_renegotiation_status.3

doc/manpages/gnutls_server_name_get.3

doc/manpages/gnutls_server_name_set.3

doc/manpages/gnutls_session_enable_compatibility_mode.3

doc/manpages/gnutls_session_get_data.3

doc/manpages/gnutls_session_get_data2.3

doc/manpages/gnutls_session_get_id.3

doc/manpages/gnutls_session_get_ptr.3

doc/manpages/gnutls_session_is_resumed.3

doc/manpages/gnutls_session_set_data.3

doc/manpages/gnutls_session_set_ptr.3

doc/manpages/gnutls_session_ticket_enable_client.3

doc/manpages/gnutls_session_ticket_enable_server.3

doc/manpages/gnutls_session_ticket_key_generate.3

doc/manpages/gnutls_set_default_export_priority.3

doc/manpages/gnutls_set_default_priority.3

doc/manpages/gnutls_sign_algorithm_get_name.3

doc/manpages/gnutls_sign_algorithm_get_requested.3

doc/manpages/gnutls_sign_callback_get.3

doc/manpages/gnutls_sign_callback_set.3

doc/manpages/gnutls_sign_get_id.3

doc/manpages/gnutls_sign_get_name.3

doc/manpages/gnutls_sign_list.3

doc/manpages/gnutls_srp_allocate_client_credentials.3

doc/manpages/gnutls_srp_allocate_server_credentials.3

doc/manpages/gnutls_srp_base64_decode.3

doc/manpages/gnutls_srp_base64_decode_alloc.3

doc/manpages/gnutls_srp_base64_encode.3

doc/manpages/gnutls_srp_base64_encode_alloc.3

doc/manpages/gnutls_srp_free_client_credentials.3

doc/manpages/gnutls_srp_free_server_credentials.3

doc/manpages/gnutls_srp_server_get_username.3

doc/manpages/gnutls_srp_set_client_credentials.3

doc/manpages/gnutls_srp_set_client_credentials_function.3

doc/manpages/gnutls_srp_set_prime_bits.3

doc/manpages/gnutls_srp_set_server_credentials_file.3

doc/manpages/gnutls_srp_set_server_credentials_function.3

doc/manpages/gnutls_srp_verifier.3

doc/manpages/gnutls_strerror.3

doc/manpages/gnutls_strerror_name.3

doc/manpages/gnutls_supplemental_get_name.3

doc/manpages/gnutls_transport_get_ptr.3

doc/manpages/gnutls_transport_get_ptr2.3

doc/manpages/gnutls_transport_set_errno.3

doc/manpages/gnutls_transport_set_global_errno.3

doc/manpages/gnutls_transport_set_lowat.3

doc/manpages/gnutls_transport_set_ptr.3

doc/manpages/gnutls_transport_set_ptr2.3

doc/manpages/gnutls_transport_set_pull_function.3

doc/manpages/gnutls_transport_set_push_function.3

doc/manpages/gnutls_x509_crl_check_issuer.3

doc/manpages/gnutls_x509_crl_deinit.3

doc/manpages/gnutls_x509_crl_export.3

doc/manpages/gnutls_x509_crl_get_authority_key_id.3

doc/manpages/gnutls_x509_crl_get_crt_count.3

doc/manpages/gnutls_x509_crl_get_crt_serial.3

doc/manpages/gnutls_x509_crl_get_dn_oid.3

doc/manpages/gnutls_x509_crl_get_extension_data.3

doc/manpages/gnutls_x509_crl_get_extension_info.3

doc/manpages/gnutls_x509_crl_get_extension_oid.3

doc/manpages/gnutls_x509_crl_get_issuer_dn.3

doc/manpages/gnutls_x509_crl_get_issuer_dn_by_oid.3

doc/manpages/gnutls_x509_crl_get_next_update.3

doc/manpages/gnutls_x509_crl_get_number.3

doc/manpages/gnutls_x509_crl_get_signature.3

doc/manpages/gnutls_x509_crl_get_signature_algorithm.3

doc/manpages/gnutls_x509_crl_get_this_update.3

doc/manpages/gnutls_x509_crl_get_version.3

doc/manpages/gnutls_x509_crl_import.3

doc/manpages/gnutls_x509_crl_init.3

doc/manpages/gnutls_x509_crl_print.3

doc/manpages/gnutls_x509_crl_set_authority_key_id.3

doc/manpages/gnutls_x509_crl_set_crt.3

doc/manpages/gnutls_x509_crl_set_crt_serial.3

doc/manpages/gnutls_x509_crl_set_next_update.3

doc/manpages/gnutls_x509_crl_set_number.3

doc/manpages/gnutls_x509_crl_set_this_update.3

doc/manpages/gnutls_x509_crl_set_version.3

doc/manpages/gnutls_x509_crl_sign.3

doc/manpages/gnutls_x509_crl_sign2.3

doc/manpages/gnutls_x509_crl_verify.3

doc/manpages/gnutls_x509_crq_deinit.3

doc/manpages/gnutls_x509_crq_export.3

doc/manpages/gnutls_x509_crq_get_attribute_by_oid.3

doc/manpages/gnutls_x509_crq_get_attribute_data.3

doc/manpages/gnutls_x509_crq_get_attribute_info.3

doc/manpages/gnutls_x509_crq_get_basic_constraints.3

doc/manpages/gnutls_x509_crq_get_challenge_password.3

doc/manpages/gnutls_x509_crq_get_dn.3

doc/manpages/gnutls_x509_crq_get_dn_by_oid.3

doc/manpages/gnutls_x509_crq_get_dn_oid.3

doc/manpages/gnutls_x509_crq_get_extension_by_oid.3

doc/manpages/gnutls_x509_crq_get_extension_data.3

doc/manpages/gnutls_x509_crq_get_extension_info.3

doc/manpages/gnutls_x509_crq_get_key_id.3

doc/manpages/gnutls_x509_crq_get_key_purpose_oid.3

doc/manpages/gnutls_x509_crq_get_key_rsa_raw.3

doc/manpages/gnutls_x509_crq_get_key_usage.3

doc/manpages/gnutls_x509_crq_get_pk_algorithm.3

doc/manpages/gnutls_x509_crq_get_subject_alt_name.3

doc/manpages/gnutls_x509_crq_get_subject_alt_othername_oid.3

doc/manpages/gnutls_x509_crq_get_version.3

doc/manpages/gnutls_x509_crq_import.3

doc/manpages/gnutls_x509_crq_init.3

doc/manpages/gnutls_x509_crq_print.3

doc/manpages/gnutls_x509_crq_set_attribute_by_oid.3

doc/manpages/gnutls_x509_crq_set_basic_constraints.3

doc/manpages/gnutls_x509_crq_set_challenge_password.3

doc/manpages/gnutls_x509_crq_set_dn_by_oid.3

doc/manpages/gnutls_x509_crq_set_key.3

doc/manpages/gnutls_x509_crq_set_key_purpose_oid.3

doc/manpages/gnutls_x509_crq_set_key_rsa_raw.3

doc/manpages/gnutls_x509_crq_set_key_usage.3

doc/manpages/gnutls_x509_crq_set_subject_alt_name.3

doc/manpages/gnutls_x509_crq_set_version.3

doc/manpages/gnutls_x509_crq_sign.3

doc/manpages/gnutls_x509_crq_sign2.3

doc/manpages/gnutls_x509_crt_check_hostname.3

doc/manpages/gnutls_x509_crt_check_issuer.3

doc/manpages/gnutls_x509_crt_check_revocation.3

doc/manpages/gnutls_x509_crt_cpy_crl_dist_points.3

doc/manpages/gnutls_x509_crt_deinit.3

doc/manpages/gnutls_x509_crt_export.3

doc/manpages/gnutls_x509_crt_get_activation_time.3

doc/manpages/gnutls_x509_crt_get_authority_key_id.3

doc/manpages/gnutls_x509_crt_get_basic_constraints.3

doc/manpages/gnutls_x509_crt_get_ca_status.3

doc/manpages/gnutls_x509_crt_get_crl_dist_points.3

doc/manpages/gnutls_x509_crt_get_dn.3

doc/manpages/gnutls_x509_crt_get_dn_by_oid.3

doc/manpages/gnutls_x509_crt_get_dn_oid.3

doc/manpages/gnutls_x509_crt_get_expiration_time.3

doc/manpages/gnutls_x509_crt_get_extension_by_oid.3

doc/manpages/gnutls_x509_crt_get_extension_data.3

doc/manpages/gnutls_x509_crt_get_extension_info.3

doc/manpages/gnutls_x509_crt_get_extension_oid.3

doc/manpages/gnutls_x509_crt_get_fingerprint.3

doc/manpages/gnutls_x509_crt_get_issuer.3

doc/manpages/gnutls_x509_crt_get_issuer_alt_name.3

doc/manpages/gnutls_x509_crt_get_issuer_alt_name2.3

doc/manpages/gnutls_x509_crt_get_issuer_alt_othername_oid.3

doc/manpages/gnutls_x509_crt_get_issuer_dn.3

doc/manpages/gnutls_x509_crt_get_issuer_dn_by_oid.3

doc/manpages/gnutls_x509_crt_get_issuer_dn_oid.3

doc/manpages/gnutls_x509_crt_get_key_id.3

doc/manpages/gnutls_x509_crt_get_key_purpose_oid.3

doc/manpages/gnutls_x509_crt_get_key_usage.3

doc/manpages/gnutls_x509_crt_get_pk_algorithm.3

doc/manpages/gnutls_x509_crt_get_pk_dsa_raw.3

doc/manpages/gnutls_x509_crt_get_pk_rsa_raw.3

doc/manpages/gnutls_x509_crt_get_proxy.3

doc/manpages/gnutls_x509_crt_get_raw_dn.3

doc/manpages/gnutls_x509_crt_get_raw_issuer_dn.3

doc/manpages/gnutls_x509_crt_get_serial.3

doc/manpages/gnutls_x509_crt_get_signature.3

doc/manpages/gnutls_x509_crt_get_signature_algorithm.3

doc/manpages/gnutls_x509_crt_get_subject.3

doc/manpages/gnutls_x509_crt_get_subject_alt_name.3

doc/manpages/gnutls_x509_crt_get_subject_alt_name2.3

doc/manpages/gnutls_x509_crt_get_subject_alt_othername_oid.3

doc/manpages/gnutls_x509_crt_get_subject_key_id.3

doc/manpages/gnutls_x509_crt_get_verify_algorithm.3

doc/manpages/gnutls_x509_crt_get_version.3

doc/manpages/gnutls_x509_crt_import.3

doc/manpages/gnutls_x509_crt_init.3

doc/manpages/gnutls_x509_crt_list_import.3

doc/manpages/gnutls_x509_crt_list_verify.3

doc/manpages/gnutls_x509_crt_print.3

doc/manpages/gnutls_x509_crt_set_activation_time.3

doc/manpages/gnutls_x509_crt_set_authority_key_id.3

doc/manpages/gnutls_x509_crt_set_basic_constraints.3

doc/manpages/gnutls_x509_crt_set_ca_status.3

doc/manpages/gnutls_x509_crt_set_crl_dist_points.3

doc/manpages/gnutls_x509_crt_set_crl_dist_points2.3

doc/manpages/gnutls_x509_crt_set_crq.3

doc/manpages/gnutls_x509_crt_set_crq_extensions.3

doc/manpages/gnutls_x509_crt_set_dn_by_oid.3

doc/manpages/gnutls_x509_crt_set_expiration_time.3

doc/manpages/gnutls_x509_crt_set_extension_by_oid.3

doc/manpages/gnutls_x509_crt_set_issuer_dn_by_oid.3

doc/manpages/gnutls_x509_crt_set_key.3

doc/manpages/gnutls_x509_crt_set_key_purpose_oid.3

doc/manpages/gnutls_x509_crt_set_key_usage.3

doc/manpages/gnutls_x509_crt_set_proxy.3

doc/manpages/gnutls_x509_crt_set_proxy_dn.3

doc/manpages/gnutls_x509_crt_set_serial.3

doc/manpages/gnutls_x509_crt_set_subject_alt_name.3

doc/manpages/gnutls_x509_crt_set_subject_alternative_name.3

doc/manpages/gnutls_x509_crt_set_subject_key_id.3

doc/manpages/gnutls_x509_crt_set_version.3

doc/manpages/gnutls_x509_crt_sign.3

doc/manpages/gnutls_x509_crt_sign2.3

doc/manpages/gnutls_x509_crt_verify.3

doc/manpages/gnutls_x509_crt_verify_data.3

doc/manpages/gnutls_x509_crt_verify_hash.3

doc/manpages/gnutls_x509_dn_deinit.3

doc/manpages/gnutls_x509_dn_export.3

doc/manpages/gnutls_x509_dn_get_rdn_ava.3

doc/manpages/gnutls_x509_dn_import.3

doc/manpages/gnutls_x509_dn_init.3

doc/manpages/gnutls_x509_dn_oid_known.3

doc/manpages/gnutls_x509_privkey_cpy.3

doc/manpages/gnutls_x509_privkey_deinit.3

doc/manpages/gnutls_x509_privkey_export.3

doc/manpages/gnutls_x509_privkey_export_dsa_raw.3

doc/manpages/gnutls_x509_privkey_export_pkcs8.3

doc/manpages/gnutls_x509_privkey_export_rsa_raw.3

doc/manpages/gnutls_x509_privkey_fix.3

doc/manpages/gnutls_x509_privkey_generate.3

doc/manpages/gnutls_x509_privkey_get_key_id.3

doc/manpages/gnutls_x509_privkey_get_pk_algorithm.3

doc/manpages/gnutls_x509_privkey_import.3

doc/manpages/gnutls_x509_privkey_import_dsa_raw.3

doc/manpages/gnutls_x509_privkey_import_pkcs8.3

doc/manpages/gnutls_x509_privkey_import_rsa_raw.3

doc/manpages/gnutls_x509_privkey_init.3

doc/manpages/gnutls_x509_privkey_sign_data.3

doc/manpages/gnutls_x509_privkey_sign_hash.3

doc/manpages/gnutls_x509_privkey_verify_data.3

doc/manpages/gnutls_x509_rdn_get.3

doc/manpages/gnutls_x509_rdn_get_by_oid.3

doc/manpages/gnutls_x509_rdn_get_oid.3

doc/manpages/srptool.1

doc/pgp-api.texi

doc/printlist.c

doc/reference/Makefile.in

doc/reference/gnutls-docs.sgml

doc/reference/gnutls-sections.txt

doc/reference/html/api-index-2-10-0.html

doc/reference/html/api-index-2-4-0.html

doc/reference/html/api-index-2-6-0.html

doc/reference/html/api-index-2-8-0.html

doc/reference/html/api-index-deprecated.html

doc/reference/html/api-index-full.html

doc/reference/html/gnutls-crypto.html

doc/reference/html/gnutls-extra.html

doc/reference/html/gnutls-gnutls.html

doc/reference/html/gnutls-openpgp.html

doc/reference/html/gnutls-openssl.html

doc/reference/html/gnutls-pkcs12.html

doc/reference/html/gnutls-x509.html

doc/reference/html/gnutls.devhelp

doc/reference/html/gnutls.devhelp2

doc/reference/html/index.html

doc/reference/html/index.sgml

doc/reference/html/intro.html

doc/reference/html/style.css

doc/reference/tmpl/crypto.sgml

doc/reference/tmpl/extra.sgml

doc/reference/tmpl/gnutls-unused.sgml

doc/reference/tmpl/gnutls.sgml

doc/reference/tmpl/netdb.sgml

doc/reference/tmpl/openpgp.sgml

doc/reference/tmpl/openssl.sgml

doc/reference/tmpl/pkcs12.sgml

doc/reference/tmpl/x509.sgml

doc/scripts/Makefile.in

doc/stamp-vti

doc/version.texi

doc/x509-api.texi

gl/Makefile.am

gl/Makefile.in

gl/accept.c

gl/alignof.h

gl/alloca.c

gl/alloca.in.h

gl/arpa_inet.in.h

gl/asnprintf.c

gl/bind.c

gl/c-ctype.c

gl/c-ctype.h

gl/close-hook.c

gl/close-hook.h

gl/close.c

gl/connect.c

gl/errno.in.h

gl/error.c

gl/error.h

gl/fclose.c

gl/float+.h

gl/float.in.h

gl/fseeko.c

gl/gai_strerror.c

gl/getaddrinfo.c

gl/getdelim.c

gl/getline.c

gl/getpass.c

gl/getpass.h

gl/gettext.h

gl/gettime.c

gl/gettimeofday.c

gl/inet_ntop.c

gl/inet_pton.c

gl/intprops.h

gl/listen.c

gl/lseek.c

gl/m4/00gnulib.m4

gl/m4/alloca.m4

gl/m4/arpa_inet_h.m4

gl/m4/asm-underscore.m4

gl/m4/autobuild.m4

gl/m4/clock_time.m4

gl/m4/close.m4

gl/m4/errno_h.m4

gl/m4/error.m4

gl/m4/extensions.m4

gl/m4/fclose.m4

gl/m4/float_h.m4

gl/m4/fseeko.m4

gl/m4/getaddrinfo.m4

gl/m4/getdelim.m4

gl/m4/getline.m4

gl/m4/getpass.m4

gl/m4/gettime.m4

gl/m4/gettimeofday.m4

gl/m4/gnulib-cache.m4

gl/m4/gnulib-common.m4

gl/m4/gnulib-comp.m4

gl/m4/hostent.m4

gl/m4/include_next.m4

gl/m4/inet_ntop.m4

gl/m4/inet_pton.m4

gl/m4/intmax_t.m4

gl/m4/ioctl.m4

gl/m4/lseek.m4

gl/m4/malloc.m4

gl/m4/manywarnings.m4

gl/m4/memchr.m4

gl/m4/minmax.m4

gl/m4/mmap-anon.m4

gl/m4/multiarch.m4

gl/m4/netdb_h.m4

gl/m4/netinet_in_h.m4

gl/m4/perror.m4

gl/m4/printf.m4

gl/m4/read-file.m4

gl/m4/readline.m4

gl/m4/realloc.m4

gl/m4/select.m4

gl/m4/servent.m4

gl/m4/snprintf.m4

gl/m4/sockets.m4

gl/m4/socklen.m4

gl/m4/sockpfaf.m4

gl/m4/stdarg.m4

gl/m4/stdbool.m4

gl/m4/stddef_h.m4

gl/m4/stdint.m4

gl/m4/stdio_h.m4

gl/m4/stdlib_h.m4

gl/m4/strerror.m4

gl/m4/string_h.m4

gl/m4/sys_ioctl_h.m4

gl/m4/sys_select_h.m4

gl/m4/sys_socket_h.m4

gl/m4/sys_stat_h.m4

gl/m4/sys_time_h.m4

gl/m4/time_h.m4

gl/m4/timespec.m4

gl/m4/ungetc.m4

gl/m4/unistd_h.m4

gl/m4/valgrind-tests.m4

gl/m4/vasnprintf.m4

gl/m4/version-etc.m4

gl/m4/warn-on-use.m4

gl/m4/warnings.m4

gl/memchr.c

gl/minmax.h

gl/netdb.in.h

gl/netinet_in.in.h

gl/perror.c

gl/printf-args.c

gl/printf-args.h

gl/printf-parse.c

gl/printf-parse.h

gl/progname.c

gl/progname.h

gl/read-file.c

gl/read-file.h

gl/readline.c

gl/readline.h

gl/realloc.c

gl/recv.c

gl/select.c

gl/send.c

gl/setsockopt.c

gl/shutdown.c

gl/size_max.h

gl/snprintf.c

gl/socket.c

gl/sockets.c

gl/sockets.h

gl/stdarg.in.h

gl/stdbool.in.h

gl/stddef.in.h

gl/stdint.in.h

gl/stdio-impl.h

gl/stdio-write.c

gl/stdio.in.h

gl/stdlib.in.h

gl/strerror.c

gl/string.in.h

gl/sys_select.in.h

gl/sys_socket.in.h

gl/sys_stat.in.h

gl/sys_time.in.h

gl/tests/Makefile.am

gl/tests/Makefile.in

gl/tests/dummy.c

gl/tests/init.sh

gl/tests/ioctl.c

gl/tests/macros.h

gl/tests/signature.h

gl/tests/sys_ioctl.in.h

gl/tests/test-alignof.c

gl/tests/test-alloca-opt.c

gl/tests/test-arpa_inet.c

gl/tests/test-c-ctype.c

gl/tests/test-errno.c

gl/tests/test-fseeko.c

gl/tests/test-getaddrinfo.c

gl/tests/test-getdelim.c

gl/tests/test-getline.c

gl/tests/test-gettimeofday.c

gl/tests/test-inet_ntop.c

gl/tests/test-inet_pton.c

gl/tests/test-lseek.c

gl/tests/test-memchr.c

gl/tests/test-netdb.c

gl/tests/test-netinet_in.c

gl/tests/test-perror.c

gl/tests/test-read-file.c

gl/tests/test-select-fd.c

gl/tests/test-select-stdin.c

gl/tests/test-select.c

gl/tests/test-snprintf.c

gl/tests/test-sockets.c

gl/tests/test-stdbool.c

gl/tests/test-stddef.c

gl/tests/test-stdint.c

gl/tests/test-stdio.c

gl/tests/test-stdlib.c

gl/tests/test-strerror.c

gl/tests/test-string.c

gl/tests/test-sys_ioctl.c

gl/tests/test-sys_select.c

gl/tests/test-sys_socket.c

gl/tests/test-sys_stat.c

gl/tests/test-sys_time.c

gl/tests/test-time.c

gl/tests/test-unistd.c

gl/tests/test-update-copyright.sh

gl/tests/test-vasnprintf.c

gl/tests/test-vc-list-files-cvs.sh

gl/tests/test-vc-list-files-git.sh

gl/tests/test-verify.c

gl/tests/test-version-etc.c

gl/tests/test-version-etc.sh

gl/tests/w32sock.h

gl/tests/zerosize-ptr.h

gl/time.in.h

gl/timespec.h

gl/unistd.in.h

gl/vasnprintf.c

gl/vasnprintf.h

gl/version-etc-fsf.c

gl/version-etc.c

gl/version-etc.h

gl/w32sock.h

gl/xsize.h

gtk-doc.make

guile/Makefile.in

guile/modules/Makefile.am

guile/modules/Makefile.in

guile/modules/system/documentation/c-snarf.scm

guile/src/Makefile.in

guile/src/core.c

guile/src/errors.c

guile/src/extra.c

guile/src/utils.c

guile/src/utils.h

guile/tests/Makefile.am

guile/tests/Makefile.in

guile/tests/anonymous-auth.scm

guile/tests/errors.scm

guile/tests/openpgp-auth.scm

guile/tests/openpgp-keyring.scm

guile/tests/openpgp-keys.scm

guile/tests/openpgp-pub.asc

guile/tests/openpgp-sec.asc

guile/tests/pkcs-import-export.scm

guile/tests/session-record-port.scm

guile/tests/srp-base64.scm

guile/tests/x509-auth.scm

guile/tests/x509-certificates.scm

lib/Makefile.am

lib/Makefile.in

lib/aclocal.m4

lib/auth_anon.c

lib/auth_cert.c

lib/auth_cert.h

lib/auth_dh_common.c

lib/auth_dh_common.h

lib/auth_dhe.c

lib/auth_dhe_psk.c

lib/auth_psk.c

lib/auth_psk.h

lib/auth_psk_passwd.c

lib/auth_psk_passwd.h

lib/auth_rsa.c

lib/auth_rsa_export.c

lib/auth_srp.c

lib/auth_srp.h

lib/auth_srp_passwd.c

lib/auth_srp_passwd.h

lib/auth_srp_rsa.c

lib/auth_srp_sb64.c

lib/build-aux/config.guess

lib/build-aux/config.rpath

lib/build-aux/config.sub

lib/build-aux/ltmain.sh

lib/config.h.in

lib/configure

lib/configure.ac

lib/crypto-api.c

lib/crypto.c

lib/crypto.h

lib/cryptodev.c

lib/debug.c

lib/debug.h

lib/ext_cert_type.c

lib/ext_cert_type.h

lib/ext_max_record.c

lib/ext_max_record.h

lib/ext_safe_renegotiation.c

lib/ext_safe_renegotiation.h

lib/ext_server_name.c

lib/ext_server_name.h

lib/ext_session_ticket.c

lib/ext_session_ticket.h

lib/ext_signature.c

lib/ext_signature.h

lib/ext_srp.c

lib/ext_srp.h

lib/gl/Makefile.am

lib/gl/Makefile.in

lib/gl/alignof.h

lib/gl/alloca.in.h

lib/gl/asnprintf.c

lib/gl/asprintf.c

lib/gl/byteswap.in.h

lib/gl/c-ctype.c

lib/gl/c-ctype.h

lib/gl/errno.in.h

lib/gl/float+.h

lib/gl/float.in.h

lib/gl/fseeko.c

lib/gl/gettext.h

lib/gl/lseek.c

lib/gl/m4/00gnulib.m4

lib/gl/m4/alloca.m4

lib/gl/m4/byteswap.m4

lib/gl/m4/errno_h.m4

lib/gl/m4/extensions.m4

lib/gl/m4/float_h.m4

lib/gl/m4/fseeko.m4

lib/gl/m4/func.m4

lib/gl/m4/gnulib-cache.m4

lib/gl/m4/gnulib-common.m4

lib/gl/m4/gnulib-comp.m4

lib/gl/m4/include_next.m4

lib/gl/m4/intmax_t.m4

lib/gl/m4/ld-output-def.m4

lib/gl/m4/ld-version-script.m4

lib/gl/m4/lseek.m4

lib/gl/m4/malloc.m4

lib/gl/m4/memchr.m4

lib/gl/m4/memmem.m4

lib/gl/m4/minmax.m4

lib/gl/m4/mmap-anon.m4

lib/gl/m4/multiarch.m4

lib/gl/m4/netdb_h.m4

lib/gl/m4/printf.m4

lib/gl/m4/read-file.m4

lib/gl/m4/realloc.m4

lib/gl/m4/snprintf.m4

lib/gl/m4/sockets.m4

lib/gl/m4/socklen.m4

lib/gl/m4/stdbool.m4

lib/gl/m4/stddef_h.m4

lib/gl/m4/stdint.m4

lib/gl/m4/stdio_h.m4

lib/gl/m4/stdlib_h.m4

lib/gl/m4/strcase.m4

lib/gl/m4/string_h.m4

lib/gl/m4/strings_h.m4

lib/gl/m4/strverscmp.m4

lib/gl/m4/sys_socket_h.m4

lib/gl/m4/sys_stat_h.m4

lib/gl/m4/time_h.m4

lib/gl/m4/time_r.m4

lib/gl/m4/ungetc.m4

lib/gl/m4/unistd_h.m4

lib/gl/m4/vasnprintf.m4

lib/gl/m4/vasprintf.m4

lib/gl/m4/vsnprintf.m4

lib/gl/m4/warn-on-use.m4

lib/gl/m4/wchar_h.m4

lib/gl/memchr.c

lib/gl/memmem.c

lib/gl/minmax.h

lib/gl/netdb.in.h

lib/gl/printf-args.c

lib/gl/printf-args.h

lib/gl/printf-parse.c

lib/gl/printf-parse.h

lib/gl/read-file.c

lib/gl/read-file.h

lib/gl/realloc.c

lib/gl/size_max.h

lib/gl/snprintf.c

lib/gl/sockets.c

lib/gl/sockets.h

lib/gl/stdbool.in.h

lib/gl/stddef.in.h

lib/gl/stdint.in.h

lib/gl/stdio-impl.h

lib/gl/stdio.in.h

lib/gl/stdlib.in.h

lib/gl/str-two-way.h

lib/gl/strcasecmp.c

lib/gl/string.in.h

lib/gl/strings.in.h

lib/gl/strncasecmp.c

lib/gl/strverscmp.c

lib/gl/sys_socket.in.h

lib/gl/sys_stat.in.h

lib/gl/tests/Makefile.am

lib/gl/tests/Makefile.in

lib/gl/tests/dummy.c

lib/gl/tests/init.sh

lib/gl/tests/intprops.h

lib/gl/tests/macros.h

lib/gl/tests/signature.h

lib/gl/tests/test-alloca-opt.c

lib/gl/tests/test-byteswap.c

lib/gl/tests/test-c-ctype.c

lib/gl/tests/test-errno.c

lib/gl/tests/test-fseeko.c

lib/gl/tests/test-func.c

lib/gl/tests/test-memchr.c

lib/gl/tests/test-netdb.c

lib/gl/tests/test-read-file.c

lib/gl/tests/test-snprintf.c

lib/gl/tests/test-sockets.c

lib/gl/tests/test-stdbool.c

lib/gl/tests/test-stddef.c

lib/gl/tests/test-stdint.c

lib/gl/tests/test-stdio.c

lib/gl/tests/test-stdlib.c

lib/gl/tests/test-string.c

lib/gl/tests/test-strings.c

lib/gl/tests/test-strverscmp.c

lib/gl/tests/test-sys_socket.c

lib/gl/tests/test-sys_stat.c

lib/gl/tests/test-time.c

lib/gl/tests/test-unistd.c

lib/gl/tests/test-vasnprintf.c

lib/gl/tests/test-vasprintf.c

lib/gl/tests/test-verify.c

lib/gl/tests/test-vsnprintf.c

lib/gl/tests/test-wchar.c

lib/gl/tests/zerosize-ptr.h

lib/gl/time.in.h

lib/gl/time_r.c

lib/gl/unistd.in.h

lib/gl/vasnprintf.c

lib/gl/vasnprintf.h

lib/gl/vasprintf.c

lib/gl/vsnprintf.c

lib/gl/w32sock.h

lib/gl/wchar.in.h

lib/gl/xsize.h

lib/gnutls.pc.in

lib/gnutls_alert.c

lib/gnutls_algorithms.c

lib/gnutls_algorithms.h

lib/gnutls_anon_cred.c

lib/gnutls_auth.c

lib/gnutls_auth.h

lib/gnutls_buffers.c

lib/gnutls_buffers.h

lib/gnutls_cert.c

lib/gnutls_cert.h

lib/gnutls_cipher.c

lib/gnutls_cipher.h

lib/gnutls_cipher_int.c

lib/gnutls_cipher_int.h

lib/gnutls_compress.c

lib/gnutls_compress.h

lib/gnutls_constate.c

lib/gnutls_constate.h

lib/gnutls_datum.c

lib/gnutls_datum.h

lib/gnutls_db.c

lib/gnutls_db.h

lib/gnutls_dh.c

lib/gnutls_dh.h

lib/gnutls_dh_primes.c

lib/gnutls_errors.c

lib/gnutls_errors.h

lib/gnutls_extensions.c

lib/gnutls_extensions.h

lib/gnutls_global.c

lib/gnutls_global.h

lib/gnutls_handshake.c

lib/gnutls_handshake.h

lib/gnutls_hash_int.c

lib/gnutls_hash_int.h

lib/gnutls_int.h

lib/gnutls_kx.c

lib/gnutls_kx.h

lib/gnutls_mem.h

lib/gnutls_mpi.c

lib/gnutls_mpi.h

lib/gnutls_num.c

lib/gnutls_num.h

lib/gnutls_pk.c

lib/gnutls_pk.h

lib/gnutls_priority.c

lib/gnutls_psk.c

lib/gnutls_psk_netconf.c

lib/gnutls_record.c

lib/gnutls_record.h

lib/gnutls_rsa_export.c

lib/gnutls_session.c

lib/gnutls_session_pack.c

lib/gnutls_session_pack.h

lib/gnutls_sig.c

lib/gnutls_sig.h

lib/gnutls_srp.c

lib/gnutls_srp.h

lib/gnutls_state.c

lib/gnutls_state.h

lib/gnutls_str.c

lib/gnutls_str.h

lib/gnutls_supplemental.c

lib/gnutls_supplemental.h

lib/gnutls_ui.c

lib/gnutls_v2_compat.c

lib/gnutls_v2_compat.h

lib/gnutls_x509.c

lib/gnutls_x509.h

lib/gnutlsxx.cpp

lib/includes/Makefile.am

lib/includes/Makefile.in

lib/includes/gnutls/compat.h

lib/includes/gnutls/crypto.h

lib/includes/gnutls/gnutls.h.in

lib/includes/gnutls/gnutlsxx.h

lib/includes/gnutls/openpgp.h

lib/includes/gnutls/pkcs12.h

lib/includes/gnutls/x509.h

lib/libgnutls.map

lib/libgnutlsxx.map

lib/m4/hooks.m4

lib/m4/libtool.m4

lib/m4/ltversion.m4

lib/minitasn1/Makefile.in

lib/minitasn1/coding.c

lib/minitasn1/element.c

lib/minitasn1/libtasn1.h

lib/minitasn1/structure.c

lib/opencdk/Makefile.am

lib/opencdk/Makefile.in

lib/opencdk/armor.c

lib/opencdk/context.h

lib/opencdk/dummy.c

lib/opencdk/filters.h

lib/opencdk/hash.c

lib/opencdk/kbnode.c

lib/opencdk/keydb.c

lib/opencdk/keydb.h

lib/opencdk/literal.c

lib/opencdk/main.c

lib/opencdk/main.h

lib/opencdk/misc.c

lib/opencdk/new-packet.c

lib/opencdk/opencdk.h

lib/opencdk/packet.h

lib/opencdk/pubkey.c

lib/opencdk/read-packet.c

lib/opencdk/seskey.c

lib/opencdk/sig-check.c

lib/opencdk/stream.c

lib/opencdk/stream.h

lib/opencdk/types.h

lib/opencdk/write-packet.c

lib/openpgp/Makefile.in

lib/openpgp/compat.c

lib/openpgp/extras.c

lib/openpgp/gnutls_openpgp.c

lib/openpgp/gnutls_openpgp.h

lib/openpgp/openpgp_int.h

lib/openpgp/output.c

lib/openpgp/pgp.c

lib/openpgp/pgpverify.c

lib/openpgp/privkey.c

lib/pkix.asn

lib/pkix_asn1_tab.c

lib/po/cs.gmo

lib/po/cs.po

lib/po/de.gmo

lib/po/de.po

lib/po/en@boldquot.gmo

lib/po/en@boldquot.po

lib/po/en@quot.gmo

lib/po/en@quot.po

lib/po/fr.gmo

lib/po/fr.po

lib/po/it.gmo

lib/po/it.po

lib/po/libgnutls.pot

lib/po/ms.gmo

lib/po/ms.po

lib/po/nl.gmo

lib/po/nl.po

lib/po/pl.gmo

lib/po/pl.po

lib/po/sv.gmo

lib/po/sv.po

lib/po/vi.gmo

lib/po/vi.po

lib/po/zh_CN.gmo

lib/po/zh_CN.po

lib/random.c

lib/random.h

lib/x509/Makefile.in

lib/x509/common.c

lib/x509/common.h

lib/x509/crl.c

lib/x509/crl_write.c

lib/x509/crq.c

lib/x509/dn.c

lib/x509/extensions.c

lib/x509/mpi.c

lib/x509/output.c

lib/x509/pbkdf2-sha1.c

lib/x509/pbkdf2-sha1.h

lib/x509/pkcs12.c

lib/x509/pkcs12_bag.c

lib/x509/pkcs12_encr.c

lib/x509/pkcs7.c

lib/x509/privkey.c

lib/x509/privkey_pkcs8.c

lib/x509/rfc2818_hostname.c

lib/x509/sign.c

lib/x509/verify.c

lib/x509/x509.c

lib/x509/x509_int.h

lib/x509/x509_write.c

lib/x509_b64.c

lib/x509_b64.h

libextra/Makefile.am

libextra/Makefile.in

libextra/aclocal.m4

libextra/build-aux/config.guess

libextra/build-aux/config.rpath

libextra/build-aux/config.sub

libextra/build-aux/ltmain.sh

libextra/config.h.in

libextra/configure

libextra/configure.ac

libextra/ext_inner_application.c

libextra/ext_inner_application.h

libextra/fipsmd5.c

libextra/gl/Makefile.in

libextra/gl/gnulib.mk

libextra/gl/hmac-md5.c

libextra/gl/hmac.h

libextra/gl/m4/00gnulib.m4

libextra/gl/m4/extensions.m4

libextra/gl/m4/gnulib-common.m4

libextra/gl/m4/gnulib-comp.m4

libextra/gl/m4/hmac-md5.m4

libextra/gl/m4/ld-output-def.m4

libextra/gl/m4/ld-version-script.m4

libextra/gl/m4/lib-ld.m4

libextra/gl/m4/lib-link.m4

libextra/gl/m4/lib-prefix.m4

libextra/gl/m4/md5.m4

libextra/gl/m4/memxor.m4

libextra/gl/md5.c

libextra/gl/md5.h

libextra/gl/memxor.c

libextra/gl/memxor.h

libextra/gnutls_extra.c

libextra/gnutls_ia.c

libextra/gnutls_openssl.c

libextra/includes/Makefile.in

libextra/includes/gnutls/extra.h

libextra/includes/gnutls/openssl.h

libextra/m4/libtool.m4

libextra/m4/ltversion.m4

libextra/openssl_compat.c

libextra/openssl_compat.h

m4/libtool.m4

m4/ltversion.m4

maint.mk

src/Makefile.am

src/Makefile.in

src/benchmark.c

src/certtool-cfg.c

src/certtool-cfg.h

src/certtool-common.h

src/certtool-gaa.c

src/certtool-gaa.h

src/certtool.c

src/certtool.gaa

src/cfg/Makefile.in

src/cfg/platon/Makefile.in

src/cfg/platon/str/Makefile.in

src/cli-gaa.c

src/cli-gaa.h

src/cli.c

src/cli.gaa

src/common.c

src/common.h

src/crypt-gaa.c

src/crypt-gaa.h

src/crypt.c

src/crypt.gaa

src/prime.c

src/psk-gaa.c

src/psk-gaa.h

src/psk.c

src/psk.gaa

src/serv-gaa.c

src/serv-gaa.h

src/serv.c

src/serv.gaa

src/tests.c

src/tests.h

src/tls_test.c

tests/Makefile.am

tests/Makefile.in

tests/anonself.c

tests/certder.c

tests/certificate_set_x509_crl.c

tests/chainverify.c

tests/crq_apis.c

tests/crq_key_id.c

tests/crypto_rng.c

tests/cve-2008-4989.c

tests/cve-2009-1415.c

tests/cve-2009-1416.c

tests/dhepskself.c

tests/dn.c

tests/dn2.c

tests/gc.c

tests/hostname-check.c

tests/init_roundtrip.c

tests/key-id/Makefile.in

tests/mini-eagain.c

tests/mini-x509-rehandshake.c

tests/mini-x509.c

tests/mini.c

tests/moredn.c

tests/mpi.c

tests/nul-in-x509-names.c

tests/openpgp-certs/Makefile.in

tests/openpgp-certs/testcerts

tests/openpgp-certs/testselfsigs

tests/openpgp-keyring.c

tests/openpgpself.c

tests/openssl.c

tests/parse_ca.c

tests/pathlen/Makefile.in

tests/pathlen/ca-no-pathlen.pem

tests/pathlen/no-ca-or-pathlen.pem

tests/pgps2kgnu.c

tests/pkcs1-padding/Makefile.in

tests/pkcs1-padding/pkcs1-pad

tests/pkcs12-decode/Makefile.in

tests/pkcs12-decode/pkcs12

tests/pkcs12_encode.c

tests/pkcs12_s2k.c

tests/pkcs12_s2k_pem.c

tests/pkcs8-decode/Makefile.in

tests/pkcs8-decode/pkcs8

tests/pskself.c

tests/resume.c

tests/rsa-md5-collision/Makefile.in

tests/safe-renegotiation/Makefile.am

tests/safe-renegotiation/Makefile.in

tests/safe-renegotiation/README

tests/safe-renegotiation/srn0.c

tests/safe-renegotiation/srn1.c

tests/safe-renegotiation/srn2.c

tests/safe-renegotiation/srn3.c

tests/safe-renegotiation/srn4.c

tests/safe-renegotiation/srn5.c

tests/set_pkcs12_cred.c

tests/setcredcrash.c

tests/sha2/Makefile.am

tests/sha2/Makefile.in

tests/sha2/sha2

tests/simple.c

tests/userid/Makefile.in

tests/userid/userid

tests/utils.c

tests/utils.h

tests/x509_altname.c

tests/x509dn.c

tests/x509self.c

tests/x509sign-verify.c

Show diffs side-by-side

added added

removed removed

lib/x509/crq.c

* Foundation, Inc.

* Author: Nikos Mavrogiannopoulos

return GNUTLS_E_MEMORY_ERROR;

result = asn1_create_element (_gnutls_get_pkix (),

"PKIX1.pkcs-10-CertificationRequest",

&((*crq)->crq));

"PKIX1.pkcs-10-CertificationRequest",

&((*crq)->crq));

if (result != ASN1_SUCCESS)

{

gnutls_assert ();

112

**/

113

int

114

gnutls_x509_crq_import (gnutls_x509_crq_t crq,

115

const gnutls_datum_t * data,

116

gnutls_x509_crt_fmt_t format)

115

const gnutls_datum_t * data,

116

gnutls_x509_crt_fmt_t format)

117

{

118

int result = 0, need_free = 0;

119

gnutls_datum_t _data;

136

/* Try the first header */

137

result = _gnutls_fbase64_decode (PEM_CRQ, data->data, data->size, &out);

138

139

if (result <= 0) /* Go for the second header */

140

result =

141

_gnutls_fbase64_decode (PEM_CRQ2, data->data, data->size, &out);

139

if (result <= 0) /* Go for the second header */

140

result =

141

_gnutls_fbase64_decode (PEM_CRQ2, data->data, data->size, &out);

142

143

if (result <= 0)

144

{

145

if (result == 0)

146

result = GNUTLS_E_INTERNAL_ERROR;

147

gnutls_assert ();

148

return result;

149

}

144

{

145

if (result == 0)

146

result = GNUTLS_E_INTERNAL_ERROR;

147

gnutls_assert ();

148

return result;

149

}

150

151

_data.data = out;

152

_data.size = result;

198

}

199

200

return _gnutls_x509_parse_dn (crq->crq,

201

"certificationRequestInfo.subject.rdnSequence",

202

buf, sizeof_buf);

201

"certificationRequestInfo.subject.rdnSequence",

202

buf, sizeof_buf);

203

}

204

205

/**

229

**/

230

int

231

gnutls_x509_crq_get_dn_by_oid (gnutls_x509_crq_t crq, const char *oid,

232

int indx, unsigned int raw_flag,

233

void *buf, size_t * sizeof_buf)

232

int indx, unsigned int raw_flag,

233

void *buf, size_t * sizeof_buf)

234

{

235

if (crq == NULL)

236

{

260

**/

261

int

262

gnutls_x509_crq_get_dn_oid (gnutls_x509_crq_t crq,

263

int indx, void *oid, size_t * sizeof_oid)

263

int indx, void *oid, size_t * sizeof_oid)

264

{

265

if (crq == NULL)

266

{

269

}

270

271

return _gnutls_x509_get_dn_oid (crq->crq,

272

"certificationRequestInfo.subject.rdnSequence",

273

indx, oid, sizeof_oid);

272

"certificationRequestInfo.subject.rdnSequence",

273

indx, oid, sizeof_oid);

274

}

275

276

/* Parses an Attribute list in the asn1_struct, and searches for the

285

286

static int

287

parse_attribute (ASN1_TYPE asn1_struct,

288

const char *attr_name, const char *given_oid, int indx,

289

int raw, char *buf, size_t * sizeof_buf)

288

const char *attr_name, const char *given_oid, int indx,

289

int raw, char *buf, size_t * sizeof_buf)

290

{

291

int k1, result;

292

char tmpbuffer1[ASN1_MAX_NAME_SIZE];

303

/* create a string like "attribute.?1"

304

305

if (attr_name[0] != 0)

306

snprintf (tmpbuffer1, sizeof (tmpbuffer1), "%s.?%u", attr_name, k1);

306

snprintf (tmpbuffer1, sizeof (tmpbuffer1), "%s.?%u", attr_name, k1);

307

else

308

snprintf (tmpbuffer1, sizeof (tmpbuffer1), "?%u", k1);

308

snprintf (tmpbuffer1, sizeof (tmpbuffer1), "?%u", k1);

309

310

len = sizeof (value) - 1;

311

result = asn1_read_value (asn1_struct, tmpbuffer1, value, &len);

312

313

if (result == ASN1_ELEMENT_NOT_FOUND)

314

{

315

gnutls_assert ();

316

break;

317

}

314

{

315

gnutls_assert ();

316

break;

317

}

318

319

if (result != ASN1_VALUE_NOT_FOUND)

320

{

321

gnutls_assert ();

322

result = _gnutls_asn2err (result);

323

goto cleanup;

324

}

320

{

321

gnutls_assert ();

322

result = _gnutls_asn2err (result);

323

goto cleanup;

324

}

325

326

/* Move to the attibute type and values

327

334

result = asn1_read_value (asn1_struct, tmpbuffer3, oid, &len);

335

336

if (result == ASN1_ELEMENT_NOT_FOUND)

337

break;

337

break;

338

else if (result != ASN1_SUCCESS)

339

{

340

gnutls_assert ();

341

result = _gnutls_asn2err (result);

342

goto cleanup;

343

}

339

{

340

gnutls_assert ();

341

result = _gnutls_asn2err (result);

342

goto cleanup;

343

}

344

345

if (strcmp (oid, given_oid) == 0)

346

{ /* Found the OID */

347

348

/* Read the Value

349

350

snprintf (tmpbuffer3, sizeof (tmpbuffer3), "%s.values.?%u",

351

tmpbuffer1, indx + 1);

352

353

len = sizeof (value) - 1;

354

result = asn1_read_value (asn1_struct, tmpbuffer3, value, &len);

355

356

if (result != ASN1_SUCCESS)

357

{

358

gnutls_assert ();

359

result = _gnutls_asn2err (result);

360

goto cleanup;

361

}

362

363

if (raw == 0)

364

{

365

printable = _gnutls_x509_oid_data_printable (oid);

366

if (printable == 1)

367

{

368

if ((result =

369

_gnutls_x509_oid_data2string

370

(oid, value, len, buf, sizeof_buf)) < 0)

371

{

372

gnutls_assert ();

373

goto cleanup;

374

}

375

return 0;

376

}

377

else

378

{

379

gnutls_assert ();

380

return GNUTLS_E_X509_UNSUPPORTED_ATTRIBUTE;

381

}

382

}

383

else

384

{ /* raw!=0 */

385

if (*sizeof_buf >= (size_t) len && buf != NULL)

386

{

387

*sizeof_buf = len;

388

memcpy (buf, value, len);

389

390

return 0;

391

}

392

else

393

{

394

*sizeof_buf = len;

395

return GNUTLS_E_SHORT_MEMORY_BUFFER;

396

}

397

}

398

}

346

{ /* Found the OID */

347

348

/* Read the Value

349

350

snprintf (tmpbuffer3, sizeof (tmpbuffer3), "%s.values.?%u",

351

tmpbuffer1, indx + 1);

352

353

len = sizeof (value) - 1;

354

result = asn1_read_value (asn1_struct, tmpbuffer3, value, &len);

355

356

if (result != ASN1_SUCCESS)

357

{

358

gnutls_assert ();

359

result = _gnutls_asn2err (result);

360

goto cleanup;

361

}

362

363

if (raw == 0)

364

{

365

printable = _gnutls_x509_oid_data_printable (oid);

366

if (printable == 1)

367

{

368

if ((result =

369

_gnutls_x509_oid_data2string

370

(oid, value, len, buf, sizeof_buf)) < 0)

371

{

372

gnutls_assert ();

373

goto cleanup;

374

}

375

return 0;

376

}

377

else

378

{

379

gnutls_assert ();

380

return GNUTLS_E_X509_UNSUPPORTED_ATTRIBUTE;

381

}

382

}

383

else

384

{ /* raw!=0 */

385

if (*sizeof_buf >= (size_t) len && buf != NULL)

386

{

387

*sizeof_buf = len;

388

memcpy (buf, value, len);

389

390

return 0;

391

}

392

else

393

{

394

*sizeof_buf = len;

395

return GNUTLS_E_SHORT_MEMORY_BUFFER;

396

}

397

}

398

}

399

400

}

401

while (1);

423

**/

424

int

425

gnutls_x509_crq_get_challenge_password (gnutls_x509_crq_t crq,

426

char *pass, size_t * sizeof_pass)

426

char *pass, size_t * sizeof_pass)

427

{

428

if (crq == NULL)

429

{

432

}

433

434

return parse_attribute (crq->crq, "certificationRequestInfo.attributes",

435

"1.2.840.113549.1.9.7", 0, 0, pass, sizeof_pass);

435

"1.2.840.113549.1.9.7", 0, 0, pass, sizeof_pass);

436

}

437

438

/* This function will attempt to set the requested attribute in

442

443

static int

444

add_attribute (ASN1_TYPE asn, const char *root, const char *attribute_id,

445

const gnutls_datum_t * ext_data)

445

const gnutls_datum_t * ext_data)

446

{

447

int result;

448

char name[ASN1_MAX_NAME_SIZE];

493

494

static int

495

overwrite_attribute (ASN1_TYPE asn, const char *root, unsigned int indx,

496

const gnutls_datum_t * ext_data)

496

const gnutls_datum_t * ext_data)

497

{

498

char name[ASN1_MAX_NAME_SIZE], name2[ASN1_MAX_NAME_SIZE];

499

int result;

516

517

static int

518

set_attribute (ASN1_TYPE asn, const char *root,

519

const char *ext_id, const gnutls_datum_t * ext_data)

519

const char *ext_id, const gnutls_datum_t * ext_data)

520

{

521

int result;

522

int k, len;

539

540

541

if (result == ASN1_ELEMENT_NOT_FOUND)

542

{

543

break;

544

}

542

{

543

break;

544

}

545

546

547

{

548

549

_gnutls_str_cpy (name2, sizeof (name2), name);

550

_gnutls_str_cat (name2, sizeof (name2), ".type");

551

552

len = sizeof (extnID) - 1;

553

result = asn1_read_value (asn, name2, extnID, &len);

554

555

if (result == ASN1_ELEMENT_NOT_FOUND)

556

{

557

gnutls_assert ();

558

break;

559

}

560

else if (result != ASN1_SUCCESS)

561

{

562

gnutls_assert ();

563

return _gnutls_asn2err (result);

564

}

565

566

/* Handle Extension

567

568

if (strcmp (extnID, ext_id) == 0)

569

{

570

/* attribute was found

571

572

return overwrite_attribute (asn, root, k, ext_data);

573

}

574

575

576

}

547

{

548

549

_gnutls_str_cpy (name2, sizeof (name2), name);

550

_gnutls_str_cat (name2, sizeof (name2), ".type");

551

552

len = sizeof (extnID) - 1;

553

result = asn1_read_value (asn, name2, extnID, &len);

554

555

if (result == ASN1_ELEMENT_NOT_FOUND)

556

{

557

gnutls_assert ();

558

break;

559

}

560

else if (result != ASN1_SUCCESS)

561

{

562

gnutls_assert ();

563

return _gnutls_asn2err (result);

564

}

565

566

/* Handle Extension

567

568

if (strcmp (extnID, ext_id) == 0)

569

{

570

/* attribute was found

571

572

return overwrite_attribute (asn, root, k, ext_data);

573

}

574

575

576

}

577

while (0);

578

}

579

while (1);

608

**/

609

int

610

gnutls_x509_crq_set_attribute_by_oid (gnutls_x509_crq_t crq,

611

const char *oid, void *buf,

612

size_t sizeof_buf)

611

const char *oid, void *buf,

612

size_t sizeof_buf)

613

{

614

gnutls_datum_t data;

615

623

}

624

625

return set_attribute (crq->crq, "certificationRequestInfo.attributes",

626

oid, &data);

626

oid, &data);

627

}

628

629

/**

644

**/

645

int

646

gnutls_x509_crq_get_attribute_by_oid (gnutls_x509_crq_t crq,

647

const char *oid, int indx, void *buf,

648

size_t * sizeof_buf)

647

const char *oid, int indx, void *buf,

648

size_t * sizeof_buf)

649

{

650

if (crq == NULL)

651

{

654

}

655

656

return parse_attribute (crq->crq, "certificationRequestInfo.attributes",

657

oid, indx, 1, buf, sizeof_buf);

657

oid, indx, 1, buf, sizeof_buf);

658

}

659

660

/**

680

**/

681

int

682

gnutls_x509_crq_set_dn_by_oid (gnutls_x509_crq_t crq, const char *oid,

683

unsigned int raw_flag, const void *data,

684

unsigned int sizeof_data)

683

unsigned int raw_flag, const void *data,

684

unsigned int sizeof_data)

685

{

686

if (sizeof_data == 0 || data == NULL || crq == NULL)

687

{

689

}

690

691

return _gnutls_x509_set_dn_oid (crq->crq,

692

"certificationRequestInfo.subject", oid,

693

raw_flag, data, sizeof_data);

692

"certificationRequestInfo.subject", oid,

693

raw_flag, data, sizeof_data);

694

}

695

696

/**

755

len = sizeof (version);

756

if ((result =

757

asn1_read_value (crq->crq, "certificationRequestInfo.version",

758

version, &len)) != ASN1_SUCCESS)

758

version, &len)) != ASN1_SUCCESS)

759

{

760

761

if (result == ASN1_ELEMENT_NOT_FOUND)

762

return 1; /* the DEFAULT version */

762

return 1; /* the DEFAULT version */

763

gnutls_assert ();

764

return _gnutls_asn2err (result);

765

}

820

**/

821

int

822

gnutls_x509_crq_get_key_rsa_raw (gnutls_x509_crq_t crq,

823

gnutls_datum_t * m, gnutls_datum_t * e)

823

gnutls_datum_t * m, gnutls_datum_t * e)

824

{

825

int ret;

826

bigint_t params[MAX_PUBLIC_PARAMS_SIZE];

888

**/

889

int

890

gnutls_x509_crq_set_key_rsa_raw (gnutls_x509_crq_t crq,

891

const gnutls_datum_t * m,

892

const gnutls_datum_t * e)

891

const gnutls_datum_t * m,

892

const gnutls_datum_t * e)

893

{

894

int result, ret;

895

size_t siz = 0;

952

**/

953

int

954

gnutls_x509_crq_set_challenge_password (gnutls_x509_crq_t crq,

955

const char *pass)

955

const char *pass)

956

{

957

int result;

958

965

/* Add the attribute.

966

967

result = asn1_write_value (crq->crq, "certificationRequestInfo.attributes",

968

"NEW", 1);

968

"NEW", 1);

969

if (result != ASN1_SUCCESS)

970

{

971

gnutls_assert ();

1004

* information in the certificate request (e.g., the version using

1005

* gnutls_x509_crq_set_version()).

1006

1007

* Deprecated: Use gnutls_x509_crq_privkey_sign() instead.

1007

1008

**/

1008

1009

int

1009

1010

gnutls_x509_crq_sign2 (gnutls_x509_crq_t crq, gnutls_x509_privkey_t key,

1010

gnutls_digest_algorithm_t dig, unsigned int flags)

1011

gnutls_digest_algorithm_t dig, unsigned int flags)

1011

1012

{

1012

1013

int result;

1013

gnutls_datum_t signature;

1014

gnutls_privkey_t privkey;

1014

1015

1016

if (crq == NULL)

1016

1017

{

1018

1019

return GNUTLS_E_INVALID_REQUEST;

1019

1020

}

1020

1021

/* Make sure version field is set. */

1022

if (gnutls_x509_crq_get_version (crq) == GNUTLS_E_ASN1_VALUE_NOT_FOUND)

1023

{

1024

result = gnutls_x509_crq_set_version (crq, 1);

1025

if (result < 0)

1026

{

1027

gnutls_assert ();

1028

return result;

1029

}

1030

}

1031

1032

/* Step 1. Self sign the request.

1033

1034

result =

1035

_gnutls_x509_sign_tbs (crq->crq, "certificationRequestInfo",

1036

dig, key, &signature);

1037

1038

if (result < 0)

1039

{

1040

gnutls_assert ();

1041

return result;

1042

}

1043

1044

/* Step 2. write the signature (bits)

1045

1046

result =

1047

asn1_write_value (crq->crq, "signature", signature.data,

1048

signature.size * 8);

1049

1050

_gnutls_free_datum (&signature);

1051

1052

if (result != ASN1_SUCCESS)

1053

{

1054

gnutls_assert ();

1055

return _gnutls_asn2err (result);

1056

}

1057

1058

/* Step 3. Write the signatureAlgorithm field.

1059

1060

result = _gnutls_x509_write_sig_params (crq->crq, "signatureAlgorithm",

1061

key->pk_algorithm, dig, key->params,

1062

key->params_size);

1063

if (result < 0)

1064

{

1065

gnutls_assert ();

1066

return result;

1067

}

1068

1069

return 0;

1022

result = gnutls_privkey_init (&privkey);

1023

if (result < 0)

1024

{

1025

gnutls_assert ();

1026

return result;

1027

}

1028

1029

result = gnutls_privkey_import_x509 (privkey, key, 0);

1030

if (result < 0)

1031

{

1032

gnutls_assert ();

1033

goto fail;

1034

}

1035

1036

result = gnutls_x509_crq_privkey_sign (crq, privkey, dig, flags);

1037

if (result < 0)

1038

{

1039

gnutls_assert ();

1040

goto fail;

1041

}

1042

1043

result = 0;

1044

1045

fail:

1046

gnutls_privkey_deinit (privkey);

1047

1048

return result;

1070

1049

}

1071

1050

1072

1051

/**

1079

1058

1080

1059

* Returns: On success, %GNUTLS_E_SUCCESS is returned, otherwise a

1081

1060

* negative error value.

1082

**/

1061

1062

* Deprecated: Use gnutls_x509_crq_privkey_sign() instead.

1063

1083

1064

int

1084

1065

gnutls_x509_crq_sign (gnutls_x509_crq_t crq, gnutls_x509_privkey_t key)

1085

1066

{

1109

1090

**/

1110

1091

int

1111

1092

gnutls_x509_crq_export (gnutls_x509_crq_t crq,

1112

gnutls_x509_crt_fmt_t format, void *output_data,

1113

size_t * output_data_size)

1093

gnutls_x509_crt_fmt_t format, void *output_data,

1094

size_t * output_data_size)

1114

1095

{

1115

1096

if (crq == NULL)

1116

1097

{

1119

1100

}

1120

1101

1121

1102

return _gnutls_x509_export_int (crq->crq, format, PEM_CRQ,

1122

output_data, output_data_size);

1103

output_data, output_data_size);

1123

1104

}

1124

1105

1125

1106

/**

1184

1165

**/

1185

1166

int

1186

1167

gnutls_x509_crq_get_attribute_info (gnutls_x509_crq_t crq, int indx,

1187

void *oid, size_t * sizeof_oid)

1168

void *oid, size_t * sizeof_oid)

1188

1169

{

1189

1170

int result;

1190

1171

char name[ASN1_MAX_NAME_SIZE];

1197

1178

}

1198

1179

1199

1180

snprintf (name, sizeof (name),

1200

"certificationRequestInfo.attributes.?%u.type", indx + 1);

1181

"certificationRequestInfo.attributes.?%u.type", indx + 1);

1201

1182

1202

1183

len = *sizeof_oid;

1203

1184

result = asn1_read_value (crq->crq, name, oid, &len);

1240

1221

**/

1241

1222

int

1242

1223

gnutls_x509_crq_get_attribute_data (gnutls_x509_crq_t crq, int indx,

1243

void *data, size_t * sizeof_data)

1224

void *data, size_t * sizeof_data)

1244

1225

{

1245

1226

int result, len;

1246

1227

char name[ASN1_MAX_NAME_SIZE];

1252

1233

}

1253

1234

1254

1235

snprintf (name, sizeof (name),

1255

"certificationRequestInfo.attributes.?%u.values.?1", indx + 1);

1236

"certificationRequestInfo.attributes.?%u.values.?1", indx + 1);

1256

1237

1257

1238

len = *sizeof_data;

1258

1239

result = asn1_read_value (crq->crq, name, data, &len);

1296

1277

**/

1297

1278

int

1298

1279

gnutls_x509_crq_get_extension_info (gnutls_x509_crq_t crq, int indx,

1299

void *oid, size_t * sizeof_oid,

1300

int *critical)

1280

void *oid, size_t * sizeof_oid,

1281

int *critical)

1301

1282

{

1302

1283

int result;

1303

1284

char str_critical[10];

1315

1296

1316

1297

/* read extensionRequest */

1317

1298

result = gnutls_x509_crq_get_attribute_by_oid (crq, "1.2.840.113549.1.9.14",

1318

0, NULL, &extensions_size);

1299

0, NULL, &extensions_size);

1319

1300

if (result == GNUTLS_E_SHORT_MEMORY_BUFFER)

1320

1301

{

1321

1302

extensions = gnutls_malloc (extensions_size);

1322

1303

if (extensions == NULL)

1323

{

1324

gnutls_assert ();

1325

return GNUTLS_E_MEMORY_ERROR;

1326

}

1304

{

1305

gnutls_assert ();

1306

return GNUTLS_E_MEMORY_ERROR;

1307

}

1327

1308

1328

1309

result = gnutls_x509_crq_get_attribute_by_oid (crq,

1329

"1.2.840.113549.1.9.14",

1330

0, extensions,

1331

&extensions_size);

1310

"1.2.840.113549.1.9.14",

1311

0, extensions,

1312

&extensions_size);

1332

1313

}

1333

1314

if (result < 0)

1334

1315

{

1389

1370

if (critical)

1390

1371

{

1391

1372

if (str_critical[0] == 'T')

1392

*critical = 1;

1373

*critical = 1;

1393

1374

else

1394

*critical = 0;

1375

*critical = 0;

1395

1376

}

1396

1377

1397

1378

result = 0;

1426

1407

**/

1427

1408

int

1428

1409

gnutls_x509_crq_get_extension_data (gnutls_x509_crq_t crq, int indx,

1429

void *data, size_t * sizeof_data)

1410

void *data, size_t * sizeof_data)

1430

1411

{

1431

1412

int result, len;

1432

1413

char name[ASN1_MAX_NAME_SIZE];

1442

1423

1443

1424

/* read extensionRequest */

1444

1425

result = gnutls_x509_crq_get_attribute_by_oid (crq, "1.2.840.113549.1.9.14",

1445

0, NULL, &extensions_size);

1426

0, NULL, &extensions_size);

1446

1427

if (result != GNUTLS_E_SHORT_MEMORY_BUFFER)

1447

1428

{

1448

1429

gnutls_assert ();

1449

1430

if (result == 0)

1450

return GNUTLS_E_INTERNAL_ERROR;

1431

return GNUTLS_E_INTERNAL_ERROR;

1451

1432

return result;

1452

1433

}

1453

1434

1459

1440

}

1460

1441

1461

1442

result = gnutls_x509_crq_get_attribute_by_oid (crq, "1.2.840.113549.1.9.14",

1462

0, extensions,

1463

&extensions_size);

1443

0, extensions,

1444

&extensions_size);

1464

1445

if (result < 0)

1465

1446

{

1466

1447

gnutls_assert ();

1526

1507

**/

1527

1508

int

1528

1509

gnutls_x509_crq_get_key_usage (gnutls_x509_crq_t crq,

1529

unsigned int *key_usage,

1530

unsigned int *critical)

1510

unsigned int *key_usage,

1511

unsigned int *critical)

1531

1512

{

1532

1513

int result;

1533

1514

uint16_t _usage;

1541

1522

}

1542

1523

1543

1524

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.15", 0,

1544

buf, &buf_size, critical);

1525

buf, &buf_size, critical);

1545

1526

if (result < 0)

1546

1527

{

1547

1528

gnutls_assert ();

1585

1566

**/

1586

1567

int

1587

1568

gnutls_x509_crq_get_basic_constraints (gnutls_x509_crq_t crq,

1588

unsigned int *critical,

1589

int *ca, int *pathlen)

1569

unsigned int *critical,

1570

int *ca, int *pathlen)

1590

1571

{

1591

1572

int result;

1592

1573

int tmp_ca;

1600

1581

}

1601

1582

1602

1583

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.19", 0,

1603

buf, &buf_size, critical);

1584

buf, &buf_size, critical);

1604

1585

if (result < 0)

1605

1586

{

1606

1587

gnutls_assert ();

1609

1590

1610

1591

result =

1611

1592

_gnutls_x509_ext_extract_basicConstraints (&tmp_ca,

1612

pathlen, buf, buf_size);

1593

pathlen, buf, buf_size);

1613

1594

if (ca)

1614

1595

*ca = tmp_ca;

1615

1596

1624

1605

1625

1606

static int

1626

1607

get_subject_alt_name (gnutls_x509_crq_t crq,

1627

unsigned int seq, void *ret,

1628

size_t * ret_size, unsigned int *ret_type,

1629

unsigned int *critical, int othername_oid)

1608

unsigned int seq, void *ret,

1609

size_t * ret_size, unsigned int *ret_type,

1610

unsigned int *critical, int othername_oid)

1630

1611

{

1631

1612

int result;

1632

1613

ASN1_TYPE c2 = ASN1_TYPE_EMPTY;

1648

1629

/* Extract extension.

1649

1630

1650

1631

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.17", 0,

1651

NULL, &dns_size, critical);

1632

NULL, &dns_size, critical);

1652

1633

if (result < 0)

1653

1634

{

1654

1635

gnutls_assert ();

1664

1645

}

1665

1646

1666

1647

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.17", 0,

1667

dnsname.data, &dns_size,

1668

critical);

1648

dnsname.data, &dns_size,

1649

critical);

1669

1650

if (result < 0)

1670

1651

{

1671

1652

gnutls_assert ();

1692

1673

}

1693

1674

1694

1675

result = _gnutls_parse_general_name (c2, "", seq, ret, ret_size,

1695

ret_type, othername_oid);

1676

ret_type, othername_oid);

1696

1677

asn1_delete_structure (&c2);

1697

1678

if (result < 0)

1698

1679

{

1734

1715

**/

1735

1716

int

1736

1717

gnutls_x509_crq_get_subject_alt_name (gnutls_x509_crq_t crq,

1737

unsigned int seq, void *ret,

1738

size_t * ret_size,

1739

unsigned int *ret_type,

1740

unsigned int *critical)

1718

unsigned int seq, void *ret,

1719

size_t * ret_size,

1720

unsigned int *ret_type,

1721

unsigned int *critical)

1741

1722

{

1742

1723

return get_subject_alt_name (crq, seq, ret, ret_size, ret_type, critical,

1743

0);

1724

0);

1744

1725

}

1745

1726

1746

1727

/**

1773

1754

**/

1774

1755

int

1775

1756

gnutls_x509_crq_get_subject_alt_othername_oid (gnutls_x509_crq_t crq,

1776

unsigned int seq,

1777

void *ret, size_t * ret_size)

1757

unsigned int seq,

1758

void *ret, size_t * ret_size)

1778

1759

{

1779

1760

return get_subject_alt_name (crq, seq, ret, ret_size, NULL, NULL, 1);

1780

1761

}

1802

1783

**/

1803

1784

int

1804

1785

gnutls_x509_crq_get_extension_by_oid (gnutls_x509_crq_t crq,

1805

const char *oid, int indx,

1806

void *buf, size_t * sizeof_buf,

1807

unsigned int *critical)

1786

const char *oid, int indx,

1787

void *buf, size_t * sizeof_buf,

1788

unsigned int *critical)

1808

1789

{

1809

1790

int result;

1810

1791

unsigned int i;

1815

1796

{

1816

1797

oid_size = sizeof (_oid);

1817

1798

result =

1818

gnutls_x509_crq_get_extension_info (crq, i, _oid, &oid_size,

1819

critical);

1799

gnutls_x509_crq_get_extension_info (crq, i, _oid, &oid_size,

1800

critical);

1820

1801

if (result < 0)

1821

{

1822

gnutls_assert ();

1823

return result;

1824

}

1802

{

1803

gnutls_assert ();

1804

return result;

1805

}

1825

1806

1826

1807

if (strcmp (oid, _oid) == 0)

1827

{ /* found */

1828

if (indx == 0)

1829

return gnutls_x509_crq_get_extension_data (crq, i, buf,

1830

sizeof_buf);

1831

else

1832

indx--;

1833

}

1808

{ /* found */

1809

if (indx == 0)

1810

return gnutls_x509_crq_get_extension_data (crq, i, buf,

1811

sizeof_buf);

1812

else

1813

indx--;

1814

}

1834

1815

}

1835

1816

1836

1817

1867

1848

**/

1868

1849

int

1869

1850

gnutls_x509_crq_set_subject_alt_name (gnutls_x509_crq_t crq,

1870

gnutls_x509_subject_alt_name_t nt,

1871

const void *data,

1872

unsigned int data_size,

1873

unsigned int flags)

1851

gnutls_x509_subject_alt_name_t nt,

1852

const void *data,

1853

unsigned int data_size,

1854

unsigned int flags)

1874

1855

{

1875

1856

int result = 0;

1876

1857

gnutls_datum_t der_data = { NULL, 0 };

1889

1870

if (flags == GNUTLS_FSAN_APPEND)

1890

1871

{

1891

1872

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.17", 0,

1892

NULL, &prev_data_size,

1893

&critical);

1873

NULL, &prev_data_size,

1874

&critical);

1894

1875

prev_der_data.size = prev_data_size;

1895

1876

1896

1877

switch (result)

1897

{

1898

case GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE:

1899

/* Replacing non-existing data means the same as set data. */

1900

break;

1901

1902

case GNUTLS_E_SUCCESS:

1903

prev_der_data.data = gnutls_malloc (prev_der_data.size);

1904

if (prev_der_data.data == NULL)

1905

{

1906

gnutls_assert ();

1907

return GNUTLS_E_MEMORY_ERROR;

1908

}

1909

1910

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.17", 0,

1911

prev_der_data.data,

1912

&prev_data_size,

1913

&critical);

1914

if (result < 0)

1915

{

1916

gnutls_assert ();

1917

gnutls_free (prev_der_data.data);

1918

return result;

1919

}

1920

break;

1921

1922

default:

1923

gnutls_assert ();

1924

return result;

1925

}

1878

{

1879

case GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE:

1880

/* Replacing non-existing data means the same as set data. */

1881

break;

1882

1883

case GNUTLS_E_SUCCESS:

1884

prev_der_data.data = gnutls_malloc (prev_der_data.size);

1885

if (prev_der_data.data == NULL)

1886

{

1887

gnutls_assert ();

1888

return GNUTLS_E_MEMORY_ERROR;

1889

}

1890

1891

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.17", 0,

1892

prev_der_data.data,

1893

&prev_data_size,

1894

&critical);

1895

if (result < 0)

1896

{

1897

gnutls_assert ();

1898

gnutls_free (prev_der_data.data);

1899

return result;

1900

}

1901

break;

1902

1903

default:

1904

gnutls_assert ();

1905

return result;

1906

}

1926

1907

}

1927

1908

1928

1909

/* generate the extension.

1929

1910

1930

1911

result = _gnutls_x509_ext_gen_subject_alt_name (nt, data, data_size,

1931

&prev_der_data, &der_data);

1912

&prev_der_data, &der_data);

1932

1913

gnutls_free (prev_der_data.data);

1933

1914

if (result < 0)

1934

1915

{

1937

1918

}

1938

1919

1939

1920

result = _gnutls_x509_crq_set_extension (crq, "2.5.29.17", &der_data,

1940

critical);

1921

critical);

1941

1922

1942

1923

_gnutls_free_datum (&der_data);

1943

1924

1970

1951

**/

1971

1952

int

1972

1953

gnutls_x509_crq_set_basic_constraints (gnutls_x509_crq_t crq,

1973

unsigned int ca, int pathLenConstraint)

1954

unsigned int ca, int pathLenConstraint)

1974

1955

{

1975

1956

int result;

1976

1957

gnutls_datum_t der_data;

1984

1965

/* generate the extension.

1985

1966

1986

1967

result = _gnutls_x509_ext_gen_basicConstraints (ca, pathLenConstraint,

1987

&der_data);

1968

&der_data);

1988

1969

if (result < 0)

1989

1970

{

1990

1971

gnutls_assert ();

2071

2052

**/

2072

2053

int

2073

2054

gnutls_x509_crq_get_key_purpose_oid (gnutls_x509_crq_t crq,

2074

int indx, void *oid, size_t * sizeof_oid,

2075

unsigned int *critical)

2055

int indx, void *oid, size_t * sizeof_oid,

2056

unsigned int *critical)

2076

2057

{

2077

2058

char tmpstr[ASN1_MAX_NAME_SIZE];

2078

2059

int result, len;

2088

2069

/* Extract extension.

2089

2070

2090

2071

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.37", 0,

2091

NULL, &prev_size, critical);

2072

NULL, &prev_size, critical);

2092

2073

prev.size = prev_size;

2093

2074

2094

2075

if (result < 0)

2105

2086

}

2106

2087

2107

2088

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.37", 0,

2108

prev.data, &prev_size,

2109

critical);

2089

prev.data, &prev_size,

2090

critical);

2110

2091

if (result < 0)

2111

2092

{

2112

2093

gnutls_assert ();

2151

2132

if (result != ASN1_SUCCESS)

2152

2133

{

2153

2134

if (result != ASN1_MEM_ERROR)

2154

gnutls_assert ();

2135

gnutls_assert ();

2155

2136

return _gnutls_asn2err (result);

2156

2137

}

2157

2138

2177

2158

**/

2178

2159

int

2179

2160

gnutls_x509_crq_set_key_purpose_oid (gnutls_x509_crq_t crq,

2180

const void *oid, unsigned int critical)

2161

const void *oid, unsigned int critical)

2181

2162

{

2182

2163

int result;

2183

2164

gnutls_datum_t prev = { NULL, 0 }, der_data;

2187

2168

/* Read existing extension, if there is one.

2188

2169

2189

2170

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.37", 0,

2190

NULL, &prev_size, &critical);

2171

NULL, &prev_size, &critical);

2191

2172

prev.size = prev_size;

2192

2173

2193

2174

switch (result)

2199

2180

case GNUTLS_E_SUCCESS:

2200

2181

prev.data = gnutls_malloc (prev.size);

2201

2182

if (prev.data == NULL)

2202

{

2203

gnutls_assert ();

2204

return GNUTLS_E_MEMORY_ERROR;

2205

}

2183

{

2184

gnutls_assert ();

2185

return GNUTLS_E_MEMORY_ERROR;

2186

}

2206

2187

2207

2188

result = gnutls_x509_crq_get_extension_by_oid (crq, "2.5.29.37", 0,

2208

prev.data, &prev_size,

2209

&critical);

2189

prev.data, &prev_size,

2190

&critical);

2210

2191

if (result < 0)

2211

{

2212

gnutls_assert ();

2213

gnutls_free (prev.data);

2214

return result;

2215

}

2192

{

2193

gnutls_assert ();

2194

gnutls_free (prev.data);

2195

return result;

2196

}

2216

2197

break;

2217

2198

2218

2199

default:

2221

2202

}

2222

2203

2223

2204

result = asn1_create_element (_gnutls_get_pkix (),

2224

"PKIX1.ExtKeyUsageSyntax", &c2);

2205

"PKIX1.ExtKeyUsageSyntax", &c2);

2225

2206

if (result != ASN1_SUCCESS)

2226

2207

{

2227

2208

gnutls_assert ();

2236

2217

result = asn1_der_decoding (&c2, prev.data, prev.size, NULL);

2237

2218

gnutls_free (prev.data);

2238

2219

if (result != ASN1_SUCCESS)

2239

{

2240

gnutls_assert ();

2241

asn1_delete_structure (&c2);

2242

return _gnutls_asn2err (result);

2243

}

2220

{

2221

gnutls_assert ();

2222

asn1_delete_structure (&c2);

2223

return _gnutls_asn2err (result);

2224

}

2244

2225

}

2245

2226

2246

2227

/* generate the extension.

2275

2256

}

2276

2257

2277

2258

result = _gnutls_x509_crq_set_extension (crq, "2.5.29.37",

2278

&der_data, critical);

2259

&der_data, critical);

2279

2260

_gnutls_free_datum (&der_data);

2280

2261

if (result < 0)

2281

2262

{

2288

2269

2289

2270

static int

2290

2271

rsadsa_crq_get_key_id (gnutls_x509_crq_t crq, int pk,

2291

unsigned char *output_data, size_t * output_data_size)

2272

unsigned char *output_data, size_t * output_data_size)

2292

2273

{

2293

2274

bigint_t params[MAX_PUBLIC_PARAMS_SIZE];

2294

2275

int params_size = MAX_PUBLIC_PARAMS_SIZE;

2307

2288

{

2308

2289

result = _gnutls_x509_write_rsa_params (params, params_size, &der);

2309

2290

if (result < 0)

2310

{

2311

gnutls_assert ();

2312

goto cleanup;

2313

}

2291

{

2292

gnutls_assert ();

2293

goto cleanup;

2294

}

2314

2295

}

2315

2296

else if (pk == GNUTLS_PK_DSA)

2316

2297

{

2317

2298

result = _gnutls_x509_write_dsa_public_key (params, params_size, &der);

2318

2299

if (result < 0)

2319

{

2320

gnutls_assert ();

2321

goto cleanup;

2322

}

2300

{

2301

gnutls_assert ();

2302

goto cleanup;

2303

}

2323

2304

}

2324

2305

else

2325

2306

return GNUTLS_E_INTERNAL_ERROR;

2375

2356

**/

2376

2357

int

2377

2358

gnutls_x509_crq_get_key_id (gnutls_x509_crq_t crq, unsigned int flags,

2378

unsigned char *output_data,

2379

size_t * output_data_size)

2359

unsigned char *output_data,

2360

size_t * output_data_size)

2380

2361

{

2381

2362

int pk, result = 0;

2382

2363

gnutls_datum_t pubkey;

2413

2394

pubkey.size = 0;

2414

2395

result =

2415

2396

asn1_der_coding (crq->crq, "certificationRequestInfo.subjectPKInfo", NULL,

2416

&pubkey.size, NULL);

2397

&pubkey.size, NULL);

2417

2398

if (result != ASN1_MEM_ERROR)

2418

2399

{

2419

2400

gnutls_assert ();

2429

2410

2430

2411

result =

2431

2412

asn1_der_coding (crq->crq, "certificationRequestInfo.subjectPKInfo",

2432

pubkey.data, &pubkey.size, NULL);

2413

pubkey.data, &pubkey.size, NULL);

2433

2414

if (result != ASN1_SUCCESS)

2434

2415

{

2435

2416

gnutls_assert ();

2438

2419

}

2439

2420

2440

2421

result = gnutls_fingerprint (GNUTLS_DIG_SHA1, &pubkey,

2441

output_data, output_data_size);

2422

output_data, output_data_size);

2442

2423

2443

2424

gnutls_free (pubkey.data);

2444

2425

2445

2426

return result;

2446

2427

}

2447

2428

2429

/**

2430

* gnutls_x509_crq_privkey_sign:

2431

* @crq: should contain a #gnutls_x509_crq_t structure

2432

* @key: holds a private key

2433

* @dig: The message digest to use, i.e., %GNUTLS_DIG_SHA1

2434

* @flags: must be 0

2435

2436

* This function will sign the certificate request with a private key.

2437

* This must be the same key as the one used in

2438

* gnutls_x509_crt_set_key() since a certificate request is self

2439

* signed.

2440

2441

* This must be the last step in a certificate request generation

2442

* since all the previously set parameters are now signed.

2443

2444

* Returns: %GNUTLS_E_SUCCESS on success, otherwise an error.

2445

* %GNUTLS_E_ASN1_VALUE_NOT_FOUND is returned if you didn't set all

2446

* information in the certificate request (e.g., the version using

2447

* gnutls_x509_crq_set_version()).

2448

2449

**/

2450

int

2451

gnutls_x509_crq_privkey_sign (gnutls_x509_crq_t crq, gnutls_privkey_t key,

2452

gnutls_digest_algorithm_t dig,

2453

unsigned int flags)

2454

{

2455

int result;

2456

gnutls_datum_t signature;

2457

gnutls_datum_t tbs;

2458

2459

if (crq == NULL)

2460

{

2461

gnutls_assert ();

2462

return GNUTLS_E_INVALID_REQUEST;

2463

}

2464

2465

/* Make sure version field is set. */

2466

if (gnutls_x509_crq_get_version (crq) == GNUTLS_E_ASN1_VALUE_NOT_FOUND)

2467

{

2468

result = gnutls_x509_crq_set_version (crq, 1);

2469

if (result < 0)

2470

{

2471

gnutls_assert ();

2472

return result;

2473

}

2474

}

2475

2476

/* Step 1. Self sign the request.

2477

2478

result = _gnutls_x509_get_tbs (crq->crq, "certificationRequestInfo", &tbs);

2479

2480

if (result < 0)

2481

{

2482

gnutls_assert ();

2483

return result;

2484

}

2485

2486

result = gnutls_privkey_sign_data (key, dig, 0, &tbs, &signature);

2487

gnutls_free (tbs.data);

2488

2489

if (result < 0)

2490

{

2491

gnutls_assert ();

2492

return result;

2493

}

2494

2495

/* Step 2. write the signature (bits)

2496

2497

result =

2498

asn1_write_value (crq->crq, "signature", signature.data,

2499

signature.size * 8);

2500

2501

_gnutls_free_datum (&signature);

2502

2503

if (result != ASN1_SUCCESS)

2504

{

2505

gnutls_assert ();

2506

return _gnutls_asn2err (result);

2507

}

2508

2509

/* Step 3. Write the signatureAlgorithm field.

2510

2511

result = _gnutls_x509_write_sig_params (crq->crq, "signatureAlgorithm",

2512

gnutls_privkey_get_pk_algorithm

2513

(key, NULL), dig);

2514

if (result < 0)

2515

{

2516

gnutls_assert ();

2517

return result;

2518

}

2519

2520

return 0;

2521

}

2522

2523

2524

/**

2525

* gnutls_x509_crq_verify:

2526

* @crq: is the crq to be verified

2527

* @flags: Flags that may be used to change the verification algorithm. Use OR of the gnutls_certificate_verify_flags enumerations.

2528

2529

* This function will verify self signature in the certificate

2530

* request and return its status.

2531

2532

* Returns: On success, %GNUTLS_E_SUCCESS is returned, %GNUTLS_E_PK_SIG_VERIFY_FAILED

2533

* if verification failed, otherwise a negative error value.

2534

**/

2535

int

2536

gnutls_x509_crq_verify (gnutls_x509_crq_t crq,

2537

unsigned int flags)

2538

{

2539

gnutls_datum data = { NULL, 0 };

2540

gnutls_datum signature = { NULL, 0 };

2541

bigint_t params[MAX_PUBLIC_PARAMS_SIZE];

2542

int ret, params_size = 0, i;

2543

2544

ret =

2545

_gnutls_x509_get_signed_data (crq->crq, "certificationRequestInfo", &data);

2546

if (ret < 0)

2547

{

2548

gnutls_assert ();

2549

return ret;

2550

}

2551

2552

ret = _gnutls_x509_get_signature (crq->crq, "signature", &signature);

2553

if (ret < 0)

2554

{

2555

gnutls_assert ();

2556

goto cleanup;

2557

}

2558

2559

params_size = MAX_PUBLIC_PARAMS_SIZE;

2560

ret =

2561

_gnutls_x509_crq_get_mpis(crq, params, &params_size);

2562

if (ret < 0)

2563

{

2564

gnutls_assert ();

2565

goto cleanup;

2566

}

2567

2568

ret = pubkey_verify_sig(&data, NULL, &signature,

2569

gnutls_x509_crq_get_pk_algorithm (crq, NULL),

2570

params, params_size);

2571

if (ret < 0)

2572

{

2573

gnutls_assert ();

2574

goto cleanup;

2575

}

2576

2577

ret = 0;

2578

2579

cleanup:

2580

_gnutls_free_datum (&data);

2581

_gnutls_free_datum (&signature);

2582

2583

for (i = 0; i < params_size; i++)

2584

{

2585

_gnutls_mpi_release (&params[i]);

2586

}

2587

2588

return ret;

2589

}

2448

2590

2449

2591

#endif /* ENABLE_PKI */

2592

Older »