• David Woodhouse's avatar
    Cope with lack of gnutls_certificate_set_key() in GnuTLS 2.12 · 25d9be59
    David Woodhouse authored
    We *can* use arbitrary privkeys, by using the cert_callback to provide
    them on demand.
    
    And even without gnutls_privkey_import_ext() to give us a constructed
    privkey that represents the TPM key, we can cope by registering a
    sign_callback on the TLS session.
    
    This means that we can support the TPM, and also fix the lack of extra
    supporting certs and expiry check when using PKCS#11 certs with GnuTLS 2.12.
    
    It also means my code is an even bigger mess of #ifdefs than it was before.
    Signed-off-by: default avatarDavid Woodhouse <David.Woodhouse@intel.com>
    25d9be59
Name
Last commit
Last update
..
images Loading commit data...
inc Loading commit data...
styles Loading commit data...
.gitignore Loading commit data...
Makefile.am Loading commit data...
building.xml Loading commit data...
changelog.xml Loading commit data...
connecting.xml Loading commit data...
contribute.xml Loading commit data...
csd.xml Loading commit data...
download.xml Loading commit data...
features.xml Loading commit data...
gui.xml Loading commit data...
html.py Loading commit data...
index.xml Loading commit data...
mail.xml Loading commit data...
manual.xml Loading commit data...
menu1.xml Loading commit data...
menu2-features.xml Loading commit data...
menu2-started.xml Loading commit data...
menu2.xml Loading commit data...
nonroot.xml Loading commit data...
packages.xml Loading commit data...
platforms.xml Loading commit data...
technical.xml Loading commit data...
vpnc-script.xml Loading commit data...