The perl scripts in this directory are my 'hack' to generate
-multiple different assembler formats via the one origional script.
+multiple different assembler formats via the one original script.
The way to use this library is to start with adding the path to this directory
and then include it.
push(@INC,"perlasm","../../perlasm");
require "x86asm.pl";
-The first thing we do is setup the file and type of assember
+The first thing we do is setup the file and type of assembler
&asm_init($ARGV[0],$0);
if (ret < 0)
{
- debugout (s, "Could not verfify peer certificate due to an error\n");
+ debugout (s, "Could not verify peer certificate due to an error\n");
return GNUTLS_E_CERTIFICATE_ERROR;
}
A TLS client or server proxy\n\
\n\
Options:\n\
- -c, --connect ADDRRESS Connect to ADDRESS\n\
+ -c, --connect ADDRESS Connect to ADDRESS\n\
-l, --listen ADDRESS Listen on ADDRESS\n\
-K, --key FILE Use FILE as private key\n\
-C, --cert FILE Use FILE as public key\n\
* gnutls-cli localhost:5556 --priority NORMAL:-CTYPE-ALL:+CTYPE-CLI-RAWPK:+CTYPE-SRV-RAWPK --no-ca-verification
*
* The above yields a handshake where both the client and server present
- * a raw public-key to eachother.
+ * a raw public-key to each other.
*/
#include <assert.h>
* gnutls-cli localhost:5556 --priority NORMAL:-CTYPE-ALL:+CTYPE-CLI-RAWPK:+CTYPE-SRV-RAWPK --no-ca-verification
*
* The above yields a handshake where both the client and server present
- * a raw public-key to eachother.
+ * a raw public-key to each other.
*/
#include <assert.h>
* exchange (CryptoPro-XchA = CryptoPro-A and CryptoPro-XchB =
* CryptoPro-C).
*
- * Then TC26 (Standard comittee working on cryptographic standards) has
+ * Then TC26 (Standard committee working on cryptographic standards) has
* defined one 256-bit curve (TC26-256-A) and three 512-bit curves
* (TC26-512-A, -B, -C).
*
not_approved = true;
}
- /* Key lengthes less than 112 bits are not approved */
+ /* Key lengths of less than 112 bits are not approved */
if (keylen < 14) {
not_approved = true;
}
not_approved = true;
}
- /* Key lengthes less than 112 bits are not approved */
+ /* Key lengths of less than 112 bits are not approved */
if (keylen < 14) {
not_approved = true;
}
* @GNUTLS_CERT_UNEXPECTED_OWNER: The owner is not the expected one.
* @GNUTLS_CERT_MISMATCH: The certificate presented isn't the expected one (TOFU)
* @GNUTLS_CERT_PURPOSE_MISMATCH: The certificate or an intermediate does not match the intended purpose (extended key usage).
- * @GNUTLS_CERT_MISSING_OCSP_STATUS: The certificate requires the server to send the certifiate status, but no status was received.
+ * @GNUTLS_CERT_MISSING_OCSP_STATUS: The certificate requires the server to send the certificate status, but no status was received.
* @GNUTLS_CERT_INVALID_OCSP_STATUS: The received OCSP status response is invalid.
* @GNUTLS_CERT_UNKNOWN_CRIT_EXTENSIONS: The certificate has extensions marked as critical which are not supported.
*
#define BITS_TO_LIMBS(bits) (((bits) + GMP_NUMB_BITS - 1) / GMP_NUMB_BITS)
-/* The maximum size of q, choosen from the fact that we support
+/* The maximum size of q, chosen from the fact that we support
* 521-bit elliptic curve generator and 512-bit DSA subgroup at
* maximum. */
#define MAX_Q_BITS 521
return result;
}
-/* Sort a certficate list in place with subject, issuer order. @clist_size must
+/* Sort a certificate list in place with subject, issuer order. @clist_size must
* be equal to or less than %DEFAULT_MAX_VERIFY_DEPTH.
*
* Returns the index in clist where the initial contiguous segment ends. If the
#else
/* Tests whether we can use gnutls_fips140_set_mode() and
- * gnutls_fips140_mode_enabled() under mutliple threads.
+ * gnutls_fips140_mode_enabled() under multiple threads.
*/
typedef struct thread_data_st {
"X.509 Certificate Information:\n"
" Version: 3\n"
" Serial Number (hex): 0b5d0a870d09\n"
- " Issuer: C=NN,O=Edel Curl Arctic Illudium Research Cloud,CN=Nothern Nowhere Trust Anchor\n"
+ " Issuer: C=NN,O=Edel Curl Arctic Illudium Research Cloud,CN=Northern Nowhere Trust Anchor\n"
" Validity:\n"
" Not Before: Tue Aug 04 22:07:33 UTC 2009\n"
" Not After: Sat Oct 21 22:07:33 UTC 2017\n"
#include <stdlib.h>
/* In this test we check whether the server will bail out after receiving
- * a bunch of warning alerts. That is to avoid DoS due to the assymetry of
+ * a bunch of warning alerts. That is to avoid DoS due to the asymmetry of
* cost of sending an alert vs the cost of receiving.
*/
} while(ret == 0);
if (i-1 != num_permitted) {
- fail_msg("Could not read all contraints; read %d, expected %d\n", i-1, num_permitted);
+ fail_msg("Could not read all constraints; read %d, expected %d\n", i-1, num_permitted);
}
i = 0;
} while(ret == 0);
if (i-1 != num_excluded) {
- fail_msg("Could not read all excluded contraints; read %d, expected %d\n", i-1, num_excluded);
+ fail_msg("Could not read all excluded constraints; read %d, expected %d\n", i-1, num_excluded);
}
/* 3: test the name constraints check function */
} while(ret == 0);
if (i-1 != 8) {
- fail("Could not read all contraints; read %d, expected %d\n", i-1, 8);
+ fail("Could not read all constraints; read %d, expected %d\n", i-1, 8);
}
gnutls_x509_name_constraints_deinit(nc);
} while(ret == 0);
if (i-1 != permitted) {
- fail("Could not read all contraints; read %d, expected %d\n", i-1, permitted);
+ fail("Could not read all constraints; read %d, expected %d\n", i-1, permitted);
}
i = 0;
} while(ret == 0);
if (i-1 != excluded) {
- fail("Could not read all excluded contraints; read %d, expected %d\n", i-1, excluded);
+ fail("Could not read all excluded constraints; read %d, expected %d\n", i-1, excluded);
}
/* 3: test the name constraints check function */
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta http-equiv="content-type" content="text/html; charset=ISO-8859-1"><title>PKITS Test Matrix</title></head><body>
<div style="text-align: center;">
<h1>Enterprise PVM</h1>
-<div style="text-align: left;">In addtion to the minimum requirements
+<div style="text-align: left;">In addition to the minimum requirements
for an Enterprise Path Validation Module, these tests assume that the
PWM implements the following features:<br>
<br>
# define P11LIB "libpkcs11mock1.so"
#endif
-/* Tests whether we can use gnutls_privkey_sign() under mutliple threads
+/* Tests whether we can use gnutls_privkey_sign() under multiple threads
* with the same key when PKCS#11 is in use.
*/
#include "cert-common.h"
/* Tests whether the post_client_hello callback can modify
- * the avalable priorities. This is used by apache's mod_gnutls.
+ * the available priorities. This is used by apache's mod_gnutls.
*/
const char *side;
start("tls1.3-only", "NORMAL:-VERS-ALL:+VERS-TLS1.3", "NORMAL:-VERS-ALL:+VERS-TLS1.3", GNUTLS_TLS1_3);
start("default", "NORMAL", "NORMAL", GNUTLS_TLS1_3);
override_prio = "NORMAL:-VERS-ALL:+VERS-TLS1.2";
- start("default overriden to TLS1.2-only", "NORMAL", "NORMAL", GNUTLS_TLS1_2);
+ start("default overridden to TLS1.2-only", "NORMAL", "NORMAL", GNUTLS_TLS1_2);
override_prio = NULL;
start("client tls1.2-only, server tls1.2-disabled",
"NORMAL:-VERS-ALL:+VERS-TLS1.2", "NORMAL:-VERS-TLS1.2:-VERS-TLS1.1:-VERS-TLS1.0:-VERS-SSL3.0", -1);
#else
-/* Tests whether we can use gnutls_rnd() under mutliple threads.
+/* Tests whether we can use gnutls_rnd() under multiple threads.
* We do a basic checking of random data match when gnutls_rnd()
* is called in parallel.
*/
};
/* Empty intersection of 2 permitted DNS names,
- * non-intuitive contraints order (more specific higher) */
+ * non-intuitive constraints order (more specific higher) */
static const char *nc_bad0[] = {
/* Alternative DNSname: two.example.org */
"-----BEGIN CERTIFICATE-----\n"
if (gnutls_session_channel_binding(client, cbtype, &client_cb)
!= GNUTLS_E_SUCCESS) {
if (negative == 0) {
- fail("Cannot get client bidning %s\n", cbname);
+ fail("Cannot get client binding %s\n", cbname);
return 1;
}
} else if(negative) {
if (gnutls_session_channel_binding(server, cbtype, &server_cb)
!= GNUTLS_E_SUCCESS) {
if (negative == 0) {
- fail("Cannot get server bidning %s\n", cbname);
+ fail("Cannot get server binding %s\n", cbname);
return -1;
}
} else if(negative) {
#include <config.h>
#endif
-/* This program tests the certificate type negotiation mechnism for
+/* This program tests the certificate type negotiation mechanism for
* the handshake as specified in RFC7250 */
#include <stdio.h>
* Request client cert: no
* Handshake: should complete without errors
* Negotiation: a Raw PK server cert and client cert. Under TLS 1.3
- * a respons is always sent by the server also when no client
+ * a response is always sent by the server also when no client
* cert is requested. This is necessary for post-handshake authentication
* to work.
*/
projects / thirdparty / gnutls.git / commitdiff
