gnutls.info   gnutls.info 
File: gnutls.info, Node: Top, Next: Preface, Up: (dir) File: gnutls.info, Node: Top, Next: Preface, Up: (dir)
GnuTLS GnuTLS
****** ******
This manual is last updated 4 March 2015 for version 3.4.4 of GnuTLS. This manual is last updated 4 March 2015 for version 3.4.5 of GnuTLS.
Copyright (C) 2001-2015 Free Software Foundation, Inc.\\ Copyright (C) Copyright (C) 2001-2015 Free Software Foundation, Inc.\\ Copyright (C)
2001-2015 Nikos Mavrogiannopoulos 2001-2015 Nikos Mavrogiannopoulos
Permission is granted to copy, distribute and/or modify this Permission is granted to copy, distribute and/or modify this
document under the terms of the GNU Free Documentation License, document under the terms of the GNU Free Documentation License,
Version 1.3 or any later version published by the Free Software Version 1.3 or any later version published by the Free Software
Foundation; with no Invariant Sections, no Front-Cover Texts, and Foundation; with no Invariant Sections, no Front-Cover Texts, and
no Back-Cover Texts. A copy of the license is included in the no Back-Cover Texts. A copy of the license is included in the
section entitled "GNU Free Documentation License". section entitled "GNU Free Documentation License".
skipping to change at line 3334 skipping to change at line 3334
to 'more'. Both will exit with a status code of 0. to 'more'. Both will exit with a status code of 0.
certtool is unavailable - no --help certtool is unavailable - no --help
debug option (-d) debug option (-d)
................. .................
This is the "enable debugging" option. This option takes a number This is the "enable debugging" option. This option takes a number
argument. Specifies the debug level. argument. Specifies the debug level.
generate-crl option
...................
This is the "generate a crl" option. This option generates a CRL. When
combined with -load-crl it would use the loaded CRL as base for the
generated (i.e., all revoked certificates in the base will be copied to
the new CRL).
generate-request option (-q) generate-request option (-q)
............................ ............................
This is the "generate a pkcs #10 certificate request" option. This is the "generate a pkcs #10 certificate request" option.
This option has some usage constraints. It: This option has some usage constraints. It:
* must not appear in combination with any of the following options: * must not appear in combination with any of the following options:
infile. infile.
Will generate a PKCS #10 certificate request. To specify a private key Will generate a PKCS #10 certificate request. To specify a private key
skipping to change at line 4051 skipping to change at line 4059
# Options for generating a CRL # Options for generating a CRL
# The number of days the next CRL update will be due. # The number of days the next CRL update will be due.
# next CRL update will be in 43 days # next CRL update will be in 43 days
#crl_next_update = 43 #crl_next_update = 43
# this is the 5th CRL by this CA # this is the 5th CRL by this CA
# Comment the field for a time-based number. # Comment the field for a time-based number.
#crl_number = 5 #crl_number = 5
# Specify the update dates more precisely.
#crl_this_update_date = "2004-02-29 16:21:42"
#crl_next_update_date = "2025-02-29 16:24:41"
# The date that the certificates will be made seen as
# being revoked.
#crl_revocation_date = "2025-02-29 16:24:41"
File: gnutls.info, Node: ocsptool Invocation, Next: danetool Invocation, Prev: certtool Invocation, Up: More on certificate authentication File: gnutls.info, Node: ocsptool Invocation, Next: danetool Invocation, Prev: certtool Invocation, Up: More on certificate authentication
4.2.6 Invoking ocsptool 4.2.6 Invoking ocsptool
----------------------- -----------------------
Ocsptool is a program that can parse and print information about OCSP Ocsptool is a program that can parse and print information about OCSP
requests/responses, generate requests and verify responses. requests/responses, generate requests and verify responses.
This section was generated by *AutoGen*, using the 'agtexi-cmd' template This section was generated by *AutoGen*, using the 'agtexi-cmd' template
and the option descriptions for the 'ocsptool' program. This software and the option descriptions for the 'ocsptool' program. This software
skipping to change at line 12094 skipping to change at line 12110
SOCKET_ERR(err, "bind"); SOCKET_ERR(err, "bind");
err = listen(listen_sd, 1024); err = listen(listen_sd, 1024);
SOCKET_ERR(err, "listen"); SOCKET_ERR(err, "listen");
printf("Server ready. Listening to port '%d'.\n\n", PORT); printf("Server ready. Listening to port '%d'.\n\n", PORT);
client_len = sizeof(sa_cli); client_len = sizeof(sa_cli);
for (;;) { for (;;) {
gnutls_init(&session, GNUTLS_SERVER); gnutls_init(&session, GNUTLS_SERVER);
gnutls_priority_set_direct(session, gnutls_priority_set_direct(session,
"NORMAL::+ANON-ECDH:+ANON-DH", "NORMAL:+ANON-ECDH:+ANON-DH",
NULL); NULL);
gnutls_credentials_set(session, GNUTLS_CRD_ANON, anoncred); gnutls_credentials_set(session, GNUTLS_CRD_ANON, anoncred);
sd = accept(listen_sd, (struct sockaddr *) &sa_cli, sd = accept(listen_sd, (struct sockaddr *) &sa_cli,
&client_len); &client_len);
printf("- connection from %s, port %d\n", printf("- connection from %s, port %d\n",
inet_ntop(AF_INET, &sa_cli.sin_addr, topbuf, inet_ntop(AF_INET, &sa_cli.sin_addr, topbuf,
sizeof(topbuf)), ntohs(sa_cli.sin_port)); sizeof(topbuf)), ntohs(sa_cli.sin_port));
 End of changes. 4 change blocks. 
2 lines changed or deleted 18 lines changed or added

This html diff was produced by rfcdiff 1.41. The latest version is available from http://tools.ietf.org/tools/rfcdiff/