[gnutls-dev] External signing API

Alon Bar-Lev alon.barlev at gmail.com
Fri Aug 10 14:12:31 CEST 2007


Hi!

You need a way get the userdata (gnutls_sign_callback_get).

I guess integrating between certificate and private key to a single
object will take time... But it will be the simplest solution as they
are the same entity.

Please also add something like:
#define GNUTLS_E_LIBEXTESION_DEFINED_BASE -2000
#define GNUTLS_E_USER_DEFINED_BASE -3000

So that external library/user may define its own set of codes.

Best Regards,
Alon Bar-Lev.

On 8/10/07, Simon Josefsson <simon at josefsson.org> wrote:
> I'm now finally working on integrating the external signing API into the
> main branch.  Here is what I've came up with API-wise.  The names are
> intentionally slightly different from any other existing namespace since
> this is an experimental interface.  Do you need any other parameters?
>
>   /* External signing callback.  Experimental. */
>   typedef int (*gnutls_sign_func) (gnutls_session_t session,
>                                    void *userdata,
>                                    gnutls_certificate_type_t cert_type,
>                                    gnutls_datum_t cert,
>                                    const gnutls_datum_t hash,
>                                    gnutls_datum_t * signature);
>
>   void gnutls_sign_callback_set (gnutls_session_t session,
>                                  gnutls_sign_func sign_func,
>                                  void *userdata);
>
> Thanks,
> Simon
>
> _______________________________________________
> Gnutls-dev mailing list
> Gnutls-dev at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnutls-dev
>



More information about the Gnutls-dev mailing list