gnutls_ocsp_status_request_is_checked: mark explicitly as unsigned the return type

Also some documentation updates.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>

diff --git a/devel/libgnutls.abignore b/devel/libgnutls.abignore
index c381204fd94ed2d29e298ef90b7c857752ec0368..2156ed39a4f6eb7f82610c25e0aa2a95c11bc49a 100644 (file)
--- a/devel/libgnutls.abignore
+++ b/devel/libgnutls.abignore
@@ -49,3 +49,8 @@ changed_enumerators = GNUTLS_GROUP_MAX
 [suppress_type]
 name = gnutls_sec_param_t
 changed_enumerators = GNUTLS_SEC_PARAM_MAX
+
+# return type changed from int to unsigned int; no ABI change
+[suppress_function]
+name = gnutls_ocsp_status_request_is_checked
+return_type_name = unsigned int

diff --git a/lib/includes/gnutls/gnutls.h.in b/lib/includes/gnutls/gnutls.h.in
index de48a7510108be0e3b2e215bb9165a06cebffc4b..5c380199fe0f4f35c5579bfb1d4157b258cbdc01 100644 (file)
--- a/lib/includes/gnutls/gnutls.h.in
+++ b/lib/includes/gnutls/gnutls.h.in
@@ -2181,8 +2181,8 @@ int gnutls_ocsp_status_request_get(gnutls_session_t session,
                                   gnutls_datum_t * response);
 
 #define GNUTLS_OCSP_SR_IS_AVAIL 1
-int gnutls_ocsp_status_request_is_checked(gnutls_session_t session,
-                                         unsigned int flags);
+unsigned gnutls_ocsp_status_request_is_checked(gnutls_session_t session,
+                                              unsigned int flags);
 
 int
 gnutls_ocsp_status_request_get2(gnutls_session_t session,

diff --git a/lib/ocsp-api.c b/lib/ocsp-api.c
index 685378a696a4acf99eb21e01a298558ebb5f5408..28f7e05a26ebe2a12ec06a19a6b214b164a95862 100644 (file)
--- a/lib/ocsp-api.c
+++ b/lib/ocsp-api.c
@@ -597,7 +597,8 @@ gnutls_certificate_get_ocsp_expiration(gnutls_certificate_credentials_t sc,
  *
  * When flags are zero this function returns non-zero if a valid OCSP status
  * response was included in the TLS handshake. That is, an OCSP status response
- * which is not too old or superseded. It returns zero otherwise.
+ * which is not too old, superseded or marks the certificate as revoked.
+ * It returns zero otherwise.
  *
  * When the flag %GNUTLS_OCSP_SR_IS_AVAIL is specified, the function
  * returns non-zero if an OCSP status response was included in the handshake
@@ -612,12 +613,12 @@ gnutls_certificate_get_ocsp_expiration(gnutls_certificate_credentials_t sc,
  * under TLS 1.3, which is the first version of TLS that allows cliend-side OCSP
  * responses.
  *
- * Returns: non zero if the response was valid, or a zero if it wasn't sent,
+ * Returns: Non-zero if the response was valid, or a zero if it wasn't sent,
  * or sent and was invalid.
  *
  * Since: 3.1.4
  **/
-int
+unsigned
 gnutls_ocsp_status_request_is_checked(gnutls_session_t session,
                                      unsigned int flags)
 {