[PATCH] Provide a gnutls_x509_crt_verify_hash

Nikos Mavrogiannopoulos nmav at gnutls.org
Thu Mar 26 19:38:29 CET 2009


Cedric BAIL wrote:
> Hi,
> 
>    I am currently using gnutls_x509_crt_verify_data to check the
> signature of a file generated with a GNUTLS_DIG_SHA1. After that I
> compare the SHA1 of the file in a database. So with the current API I
> wasn't able to find a way to do SHA1 computation only one time.
>    I finally decided to implement gnutls_x509_crt_get_hash_algorithm
> and gnutls_x509_crt_verify_hash for this usecase on top of
> gnutls-2.7.6. So as I would like to solve this case in mainline, I
> would appreciate any comment to work on this goal.

I like it. I have only renamed gnutls_x509_crt_get_hash_algorithm() to
gnutls_x509_crt_get_sig_algorithm(). If you are willing to sign the
papers to assign the copyright of this patch to FSF, I'll commit it as soon.

best regards,
Nikos





More information about the Gnutls-devel mailing list