Purpose of gnutls_credentials_set
Florian Weimer
fweimer at bfk.de
Fri Jun 4 18:23:45 CEST 2010
* Nikos Mavrogiannopoulos:
> After or during the handshake (with a callback that I don't remember
> its name) you should verify the certificate chain received by peer.
> For that you can use gnutls_certificate_verify_peers2(). Could you
> suggest the points in documentation that were not clear for you, so we
> can correct them? The problem when I read the documentation is that I
> know everything :) that needs to be done thus such things are easy to
> miss.
gnutls_certificate_set_x509_key, gnutls_certificate_set_x509_key_mem,
gnutls_certificate_set_x509_key_file should mention that they are only
relevant to the server side, and that on the client side,
gnutls_certificate_client_set_retrieve_function has to be used to
install a callback which provides the certificate to send to the
server.
Splitting the "Core functions" section in the manual might also make
sense (into certificate, session, session credentials functions,
etc.).
--
Florian Weimer <fweimer at bfk.de>
BFK edv-consulting GmbH http://www.bfk.de/
Kriegsstraße 100 tel: +49-721-96201-1
D-76133 Karlsruhe fax: +49-721-96201-99
More information about the Gnutls-help
mailing list