ret = GNUTLS_A_UNSUPPORTED_EXTENSION;
_level = GNUTLS_AL_FATAL;
break;
+ case GNUTLS_E_USER_ERROR:
+ ret = GNUTLS_A_USER_CANCELED;
+ _level = GNUTLS_AL_FATAL;
+ break;
case GNUTLS_E_UNEXPECTED_PACKET:
case GNUTLS_E_UNEXPECTED_HANDSHAKE_PACKET:
ret = GNUTLS_A_UNEXPECTED_MESSAGE;
GNUTLS_E_PKCS11_USER_ERROR, 1),
ERROR_ENTRY (N_("The operation timed out"),
GNUTLS_E_TIMEDOUT, 1),
+ ERROR_ENTRY (N_("The operation was cancelled due to user error"),
+ GNUTLS_E_USER_ERROR, 1),
{NULL, NULL, 0, 0}
};
/* These are set on the credentials structure.
*/
+
+ /* This is the same as gnutls_certificate_retrieve_function()
+ * but retrieves a gnutls_pcert_st which requires much less processing
+ * within the library.
+ */
+ typedef int gnutls_certificate_retrieve_function2 (gnutls_session_t,
+ const gnutls_datum_t *
+ req_ca_rdn,
+ int nreqs,
+ const
+ gnutls_pk_algorithm_t
+ * pk_algos,
+ int pk_algos_length,
+ gnutls_pcert_st *);
+
+
+ void gnutls_certificate_set_retrieve_function2
+ (gnutls_certificate_credentials_t cred,
+ gnutls_certificate_retrieve_function2 * func);
typedef int gnutls_certificate_retrieve_function (gnutls_session_t,
const
#define GNUTLS_E_PKCS11_USER_ERROR -317
#define GNUTLS_E_CRYPTO_INIT_FAILED -318
-
#define GNUTLS_E_TIMEDOUT -319
+#define GNUTLS_E_USER_ERROR -320
#define GNUTLS_E_UNIMPLEMENTED_FEATURE -1250