[gnutls-devel] GnuTLS | WIP: RFC7250 Raw public keys (!650)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Sun Oct 14 15:59:26 CEST 2018

Tom commented on a discussion on lib/includes/gnutls/gnutls.h.in:

>  			        unsigned idx,
>  			        gnutls_datum_t * response);
> +/* RAW public key functions (RFC7250) */
> +#ifdef ENABLE_RAWPK
> +int gnutls_certificate_set_rawpk_keypair(gnutls_certificate_credentials_t cred,

I've been thinking about this and I think you are right. We can use `gnutls_certificate_set_key` for both x509 and rawpk. The names can be useful for vhosts. I will therefore remove my `gnutls_certificate_set_rawpk_key` function. However, I would like to propose some improvements on `gnutls_certificate_set_key`. Furthermore, I would suggest to relocate it to `cert-cred.c` instead of `cert-cred-x509.c` because the function does not apply to x509 alone anymore. What do you think?

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/650#note_108597215
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20181014/7b50accd/attachment.html>

More information about the Gnutls-devel mailing list