gnutls_anon_server_credentials_t cred;
cred = (gnutls_anon_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_ANON, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_ANON);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
const bigint_t *mpis;
cred = (gnutls_anon_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_ANON, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_ANON);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
gnutls_anon_server_credentials_t cred;
cred = (gnutls_anon_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_ANON, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_ANON);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
gnutls_anon_server_credentials_t cred;
cred = (gnutls_anon_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_ANON, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_ANON);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
unsigned int pcert_length = 0;
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
gnutls_datum_t *issuers_dn = NULL;
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
gnutls_datum_t tmp;
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
uint8_t subkey_id[GNUTLS_OPENPGP_KEYID_SIZE];
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
cred =
(gnutls_certificate_credentials_t) _gnutls_get_cred(session,
- GNUTLS_CRD_CERTIFICATE,
- NULL);
+ GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
return gnutls_assert_val(GNUTLS_E_INTERNAL_ERROR);
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
*/
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
char server_name[MAX_CN];
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
gnutls_dh_params_t dh_params;
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
gnutls_dh_params_t dh_params;
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
gnutls_datum_t username, key;
cred = (gnutls_psk_client_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL)
return
gnutls_datum_t username, key;
cred = (gnutls_psk_client_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL)
return
gnutls_psk_server_credentials_t cred;
cred = (gnutls_psk_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
ssize_t data_size = _data_size;
cred = (gnutls_psk_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL) {
gnutls_assert();
ssize_t data_size = _data_size;
cred = (gnutls_psk_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL) {
gnutls_assert();
gnutls_certificate_credentials_t cred;
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
gnutls_certificate_credentials_t cred;
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
gnutls_psk_client_credentials_t cred;
cred = (gnutls_psk_client_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL) {
gnutls_assert();
psk_auth_info_t info;
cred = (gnutls_psk_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL) {
gnutls_assert();
gnutls_datum_t hint;
cred = (gnutls_psk_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL) {
gnutls_assert();
psk_auth_info_t info;
cred = (gnutls_psk_client_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL) {
gnutls_assert();
int ret;
cred = (gnutls_psk_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
gnutls_pk_params_release(¶ms);
cred = (gnutls_psk_client_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL) {
gnutls_assert();
gnutls_datum_t premaster_secret = { NULL, 0 };
cred = (gnutls_psk_server_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_PSK, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_PSK);
if (cred == NULL) {
gnutls_assert();
priv = epriv.ptr;
cred = (gnutls_srp_client_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_SRP, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_SRP);
if (cred == NULL) {
gnutls_assert();
priv = epriv.ptr;
cred = (gnutls_srp_client_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_SRP, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_SRP);
if (cred == NULL) {
gnutls_assert();
entry = *_entry;
cred = (gnutls_srp_server_credentials_t)
- _gnutls_get_cred(state, GNUTLS_CRD_SRP, NULL);
+ _gnutls_get_cred(state, GNUTLS_CRD_SRP);
if (cred == NULL) {
gnutls_assert();
ret = GNUTLS_E_INSUFFICIENT_CREDENTIALS;
ddata.size = data->length;
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
if (session->security_parameters.entity == GNUTLS_CLIENT) {
gnutls_srp_client_credentials_t cred =
(gnutls_srp_client_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_SRP, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_SRP);
if (cred == NULL)
return 0;
gnutls_certificate_credentials_t cred;
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) /* no certificate authentication */
return gnutls_assert_val(0);
{
const void *_cred;
- _cred = _gnutls_get_cred(session, type, NULL);
+ _cred = _gnutls_get_cred(session, type);
if (_cred == NULL)
return gnutls_assert_val(GNUTLS_E_INVALID_REQUEST);
* free that!!!
*/
const void *_gnutls_get_kx_cred(gnutls_session_t session,
- gnutls_kx_algorithm_t algo, int *err)
+ gnutls_kx_algorithm_t algo)
{
int server =
session->security_parameters.entity == GNUTLS_SERVER ? 1 : 0;
return _gnutls_get_cred(session,
- _gnutls_map_kx_get_cred(algo, server),
- err);
+ _gnutls_map_kx_get_cred(algo, server));
}
const void *_gnutls_get_cred(gnutls_session_t session,
- gnutls_credentials_type_t type, int *err)
+ gnutls_credentials_type_t type)
{
- const void *retval = NULL;
- int _err = -1;
auth_cred_st *ccred;
gnutls_key_st *key = &session->key;
ccred = ccred->next;
}
if (ccred == NULL)
- goto out;
+ return NULL;
- _err = 0;
- retval = ccred->credentials;
-
- out:
- if (err != NULL)
- *err = _err;
- return retval;
+ return ccred->credentials;
}
/*-
} mod_auth_st;
const void *_gnutls_get_cred(gnutls_session_t session,
- gnutls_credentials_type_t kx, int *err);
+ gnutls_credentials_type_t kx);
const void *_gnutls_get_kx_cred(gnutls_session_t session,
- gnutls_kx_algorithm_t algo, int *err);
+ gnutls_kx_algorithm_t algo);
int _gnutls_auth_info_set(gnutls_session_t session,
gnutls_credentials_type_t type, int size,
int allow_change);
return GNUTLS_E_INVALID_REQUEST;
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
unsigned int i, j, cipher_suites_size;
size_t pk_algos_size;
uint8_t cipher_suites[MAX_CIPHERSUITE_SIZE];
- int retval, err;
+ int retval;
gnutls_pk_algorithm_t pk_algos[MAX_ALGOS]; /* will hold the pk algorithms
* supported by the peer.
*/
if (_gnutls_get_kx_cred
(session,
_gnutls_cipher_suite_get_kx_algo(session->security_parameters.
- cipher_suite), &err) == NULL
- && err != 0) {
+ cipher_suite)) == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
}
uint8_t z;
uint8_t cipher_suites[MAX_CIPHERSUITE_SIZE];
int cipher_suite_size;
- int i, err;
+ int i;
z = 1;
cipher_suite_size =
_gnutls_get_kx_cred
(session,
_gnutls_cipher_suite_get_kx_algo
- (session->security_parameters.cipher_suite), &err) == NULL
- && err != 0) {
+ (session->security_parameters.cipher_suite)) == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
}
cred =
(gnutls_certificate_credentials_t) _gnutls_get_cred(session,
- GNUTLS_CRD_CERTIFICATE,
- NULL);
+ GNUTLS_CRD_CERTIFICATE);
if (side == GNUTLS_CLIENT)
type = gnutls_auth_server_get_type(session);
int delete;
gnutls_certificate_credentials_t x509_cred =
(gnutls_certificate_credentials_t)
- _gnutls_get_cred(session,
- cred_type, NULL);
+ _gnutls_get_cred(session, cred_type);
if (x509_cred != NULL) {
dh_params =
} else if (cred_type == GNUTLS_CRD_ANON) {
gnutls_anon_server_credentials_t anon_cred =
(gnutls_anon_server_credentials_t)
- _gnutls_get_cred(session,
- cred_type, NULL);
+ _gnutls_get_cred(session, cred_type);
if (anon_cred != NULL) {
dh_params =
} else if (cred_type == GNUTLS_CRD_PSK) {
gnutls_psk_server_credentials_t psk_cred =
(gnutls_psk_server_credentials_t)
- _gnutls_get_cred(session,
- cred_type, NULL);
+ _gnutls_get_cred(session, cred_type);
if (psk_cred != NULL) {
dh_params =
*/
cert_cred =
(gnutls_certificate_credentials_t) _gnutls_get_cred(session,
- GNUTLS_CRD_CERTIFICATE,
- NULL);
+ GNUTLS_CRD_CERTIFICATE);
/* If there are certificate credentials, find an appropriate certificate
* or disable them;
/* if it is defined but had no credentials
*/
if (!session->internals.premaster_set &&
- _gnutls_get_kx_cred(session, kx, NULL) == NULL) {
+ _gnutls_get_kx_cred(session, kx) == NULL) {
delete = 1;
} else {
delete = 0;
SRP credential too. */
if (kx == GNUTLS_KX_SRP_RSA || kx == GNUTLS_KX_SRP_DSS) {
if (!_gnutls_get_cred
- (session, GNUTLS_CRD_SRP, NULL)) {
+ (session, GNUTLS_CRD_SRP)) {
delete = 1;
}
}
if (session->security_parameters.entity == GNUTLS_SERVER) {
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE,
- NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL)
return GNUTLS_E_UNSUPPORTED_CERTIFICATE_TYPE;
CHECK_AUTH(GNUTLS_CRD_CERTIFICATE, NULL);
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL || cred->certs == NULL) {
gnutls_assert();
return NULL;
gnutls_protocol_t adv_version;
uint8_t rnd[GNUTLS_RANDOM_SIZE];
int len = datalen;
- int err;
uint16_t challenge;
uint8_t session_id[TLS_MAX_SESSION_ID_SIZE];
if (_gnutls_get_kx_cred
(session,
_gnutls_cipher_suite_get_kx_algo(session->security_parameters.
- cipher_suite), &err) == NULL
- && err != 0) {
+ cipher_suite)) == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;
}
}
cred = (gnutls_certificate_credentials_t)
- _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE, NULL);
+ _gnutls_get_cred(session, GNUTLS_CRD_CERTIFICATE);
if (cred == NULL) {
gnutls_assert();
return GNUTLS_E_INSUFFICIENT_CREDENTIALS;