gnutls.info		gnutls.info
	File: gnutls.info, Node: Top, Next: Preface, Up: (dir)		File: gnutls.info, Node: Top, Next: Preface, Up: (dir)
	GnuTLS		GnuTLS
	******		******
	This manual is last updated 4 March 2015 for version 3.4.4 of GnuTLS.		This manual is last updated 4 March 2015 for version 3.4.5 of GnuTLS.
	Copyright (C) 2001-2015 Free Software Foundation, Inc.\\ Copyright (C)		Copyright (C) 2001-2015 Free Software Foundation, Inc.\\ Copyright (C)
	2001-2015 Nikos Mavrogiannopoulos		2001-2015 Nikos Mavrogiannopoulos
	Permission is granted to copy, distribute and/or modify this		Permission is granted to copy, distribute and/or modify this
	document under the terms of the GNU Free Documentation License,		document under the terms of the GNU Free Documentation License,
	Version 1.3 or any later version published by the Free Software		Version 1.3 or any later version published by the Free Software
	Foundation; with no Invariant Sections, no Front-Cover Texts, and		Foundation; with no Invariant Sections, no Front-Cover Texts, and
	no Back-Cover Texts. A copy of the license is included in the		no Back-Cover Texts. A copy of the license is included in the
	section entitled "GNU Free Documentation License".		section entitled "GNU Free Documentation License".
	skipping to change at line 3334		skipping to change at line 3334
	to 'more'. Both will exit with a status code of 0.		to 'more'. Both will exit with a status code of 0.
	certtool is unavailable - no --help		certtool is unavailable - no --help
	debug option (-d)		debug option (-d)
	.................		.................
	This is the "enable debugging" option. This option takes a number		This is the "enable debugging" option. This option takes a number
	argument. Specifies the debug level.		argument. Specifies the debug level.
			generate-crl option
			...................
			This is the "generate a crl" option. This option generates a CRL. When
			combined with -load-crl it would use the loaded CRL as base for the
			generated (i.e., all revoked certificates in the base will be copied to
			the new CRL).
	generate-request option (-q)		generate-request option (-q)
	............................		............................
	This is the "generate a pkcs #10 certificate request" option.		This is the "generate a pkcs #10 certificate request" option.
	This option has some usage constraints. It:		This option has some usage constraints. It:
	* must not appear in combination with any of the following options:		* must not appear in combination with any of the following options:
	infile.		infile.
	Will generate a PKCS #10 certificate request. To specify a private key		Will generate a PKCS #10 certificate request. To specify a private key
	skipping to change at line 4051		skipping to change at line 4059
	# Options for generating a CRL		# Options for generating a CRL
	# The number of days the next CRL update will be due.		# The number of days the next CRL update will be due.
	# next CRL update will be in 43 days		# next CRL update will be in 43 days
	#crl_next_update = 43		#crl_next_update = 43
	# this is the 5th CRL by this CA		# this is the 5th CRL by this CA
	# Comment the field for a time-based number.		# Comment the field for a time-based number.
	#crl_number = 5		#crl_number = 5
			# Specify the update dates more precisely.
			#crl_this_update_date = "2004-02-29 16:21:42"
			#crl_next_update_date = "2025-02-29 16:24:41"
			# The date that the certificates will be made seen as
			# being revoked.
			#crl_revocation_date = "2025-02-29 16:24:41"
	File: gnutls.info, Node: ocsptool Invocation, Next: danetool Invocation, Prev: certtool Invocation, Up: More on certificate authentication		File: gnutls.info, Node: ocsptool Invocation, Next: danetool Invocation, Prev: certtool Invocation, Up: More on certificate authentication
	4.2.6 Invoking ocsptool		4.2.6 Invoking ocsptool
	-----------------------		-----------------------
	Ocsptool is a program that can parse and print information about OCSP		Ocsptool is a program that can parse and print information about OCSP
	requests/responses, generate requests and verify responses.		requests/responses, generate requests and verify responses.
	This section was generated by *AutoGen*, using the 'agtexi-cmd' template		This section was generated by *AutoGen*, using the 'agtexi-cmd' template
	and the option descriptions for the 'ocsptool' program. This software		and the option descriptions for the 'ocsptool' program. This software
	skipping to change at line 12094		skipping to change at line 12110
	SOCKET_ERR(err, "bind");		SOCKET_ERR(err, "bind");
	err = listen(listen_sd, 1024);		err = listen(listen_sd, 1024);
	SOCKET_ERR(err, "listen");		SOCKET_ERR(err, "listen");
	printf("Server ready. Listening to port '%d'.\n\n", PORT);		printf("Server ready. Listening to port '%d'.\n\n", PORT);
	client_len = sizeof(sa_cli);		client_len = sizeof(sa_cli);
	for (;;) {		for (;;) {
	gnutls_init(&session, GNUTLS_SERVER);		gnutls_init(&session, GNUTLS_SERVER);
	gnutls_priority_set_direct(session,		gnutls_priority_set_direct(session,
	"NORMAL::+ANON-ECDH:+ANON-DH",		"NORMAL:+ANON-ECDH:+ANON-DH",
	NULL);		NULL);
	gnutls_credentials_set(session, GNUTLS_CRD_ANON, anoncred);		gnutls_credentials_set(session, GNUTLS_CRD_ANON, anoncred);
	sd = accept(listen_sd, (struct sockaddr *) &sa_cli,		sd = accept(listen_sd, (struct sockaddr *) &sa_cli,
	&client_len);		&client_len);
	printf("- connection from %s, port %d\n",		printf("- connection from %s, port %d\n",
	inet_ntop(AF_INET, &sa_cli.sin_addr, topbuf,		inet_ntop(AF_INET, &sa_cli.sin_addr, topbuf,
	sizeof(topbuf)), ntohs(sa_cli.sin_port));		sizeof(topbuf)), ntohs(sa_cli.sin_port));
End of changes. 4 change blocks.
	2 lines changed or deleted		18 lines changed or added
This html diff was produced by rfcdiff 1.41. The latest version is available from http://tools.ietf.org/tools/rfcdiff/