diff options
| author | Werner Koch <[email protected]> | 2017-09-18 20:49:05 +0000 |
|---|---|---|
| committer | Werner Koch <[email protected]> | 2017-09-18 20:49:05 +0000 |
| commit | df692a6167be5486f9a29da003a00292fd895176 (patch) | |
| tree | 10d83f1fa7a1b46b59e9301c22ddc11a7b2b9cdc /dirmngr/certcache.h | |
| parent | po: Minor Grammar update of the Greek translation (diff) | |
| download | gnupg-df692a6167be5486f9a29da003a00292fd895176.tar.gz gnupg-df692a6167be5486f9a29da003a00292fd895176.zip | |
dirmngr: Use system certs if --hkp-cacert is not used.
* dirmngr/certcache.c (any_cert_of_class): New var.
(put_cert): Set it.
(cert_cache_deinit): Clear it.
(cert_cache_any_in_class): New func.
* dirmngr/http-ntbtls.c (gnupg_http_tls_verify_cb): Add hack to
override empty list of HKP certs.
--
This patch carries the changes for GNUTLS from commit
7c1613d41566f7d8db116790087de323621205fe over to NTBTLS. NTBTLS works
quite different and thus we need to do it this way.
Signed-off-by: Werner Koch <[email protected]>
Diffstat (limited to 'dirmngr/certcache.h')
| -rw-r--r-- | dirmngr/certcache.h | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/dirmngr/certcache.h b/dirmngr/certcache.h index 92529bf11..8d645836d 100644 --- a/dirmngr/certcache.h +++ b/dirmngr/certcache.h @@ -39,6 +39,9 @@ void cert_cache_deinit (int full); /* Print some statistics to the log file. */ void cert_cache_print_stats (void); +/* Return true if any cert of a class in MASK is permanently loaded. */ +int cert_cache_any_in_class (unsigned int mask); + /* Compute the fingerprint of the certificate CERT and put it into the 20 bytes large buffer DIGEST. Return address of this buffer. */ unsigned char *cert_compute_fpr (ksba_cert_t cert, unsigned char *digest); |