+* Add Client Certificate support in X509 authentication
+* Add certificate extensions support (x509v3)
+* Add DHE_* ciphersuites
+* Tools for processing/generating certificates
+* Documentation (of existing functions + Manual)
* OpenPGP certificate support (through libgcrypt)
* Add Kerberos support (who wants that?)
* Audit the code (volunteers?)
-* Tools for processing/generating certificates
-* Add certificate extensions support (x509v3)
-* Documentation (of existing functions + Manual)
-* Add DHE_* ciphersuites
-* Add Client Certificate support in X509 authentication
/* res is not malloced
*/
-#define _READ( str, OID, NAME, res) \
+#define _READ( str, OID, ANAME, NAME, res) \
if(strcmp(str, OID)==0){ \
- strcpy( str, "PKIX1Implicit88.X520"); \
- strcat( str, NAME); \
+ strcpy( str, "PKIX1Implicit88."); \
+ strcat( str, ANAME); \
strcpy( name2, "temp-structure-"); \
strcat( name2, NAME); \
if ( (result = asn1_create_structure( _gnutls_get_pkix(), str, &tmpasn, name2)) != ASN_OK) { \
* ASN.1 structure. (Taken from Fabio's samples!)
* --nmav
*/
-#warning "Fix COUNTRY/EMAIL"
static int _get_Name_type( node_asn *rasn, char *root, gnutls_DN * dn)
{
int k, k2, result, len;
if (result == ASN_OK) {
node_asn *tmpasn;
-
- _READ(str, "2 5 4 6", "countryName",
- dn->country);
- _READ(str, "2 5 4 10", "OrganizationName",
- dn->organization);
- _READ(str, "2 5 4 11",
- "OrganizationalUnitName",
- dn->organizational_unit_name);
- _READ(str, "2 5 4 3", "CommonName",
- dn->common_name);
- _READ(str, "2 5 4 7", "LocalityName",
- dn->locality_name);
- _READ(str, "2 5 4 8",
- "StateOrProvinceName",
- dn->state_or_province_name);
+#ifdef DEBUG
+# warning " FIX COUNTRY HERE"
+#endif
+ _READ(str, "2 5 4 6", "X520OrganizationName",
+ "countryName", dn->country);
+ _READ(str, "2 5 4 10", "X520OrganizationName",
+ "OrganizationName", dn->organization);
+ _READ(str, "2 5 4 11", "X520OrganizationalUnitName",
+ "OrganizationalUnitName", dn->organizational_unit_name);
+ _READ(str, "2 5 4 3", "X520CommonName",
+ "CommonName", dn->common_name);
+ _READ(str, "2 5 4 7", "X520LocalityName",
+ "LocalityName", dn->locality_name);
+ _READ(str, "2 5 4 8", "X520StateOrProvinceName",
+ "StateOrProvinceName", dn->state_or_province_name);
}
} while (1);
} while (1);
* purposes.
*/
gnutls_set_cipher_priority(state, GNUTLS_NULL_CIPHER,
- GNUTLS_RIJNDAEL_CBC, GNUTLS_3DES_CBC, 0);
+ GNUTLS_RIJNDAEL_CBC, GNUTLS_3DES_CBC, GNUTLS_ARCFOUR, 0);
gnutls_set_compression_priority(state, GNUTLS_ZLIB, GNUTLS_NULL_COMPRESSION, 0);
gnutls_set_kx_priority(state, GNUTLS_KX_DHE_RSA, GNUTLS_KX_RSA, GNUTLS_KX_SRP,
GNUTLS_KX_DH_ANON, 0);
projects / thirdparty / gnutls.git / commitdiff
