diff options
-rw-r--r-- | devel/libgnutls.abignore | 5 | ||||
-rw-r--r-- | lib/includes/gnutls/gnutls.h.in | 4 | ||||
-rw-r--r-- | lib/ocsp-api.c | 7 |
3 files changed, 11 insertions, 5 deletions
diff --git a/devel/libgnutls.abignore b/devel/libgnutls.abignore index c381204fd9..2156ed39a4 100644 --- a/devel/libgnutls.abignore +++ b/devel/libgnutls.abignore @@ -49,3 +49,8 @@ changed_enumerators = GNUTLS_GROUP_MAX [suppress_type] name = gnutls_sec_param_t changed_enumerators = GNUTLS_SEC_PARAM_MAX + +# return type changed from int to unsigned int; no ABI change +[suppress_function] +name = gnutls_ocsp_status_request_is_checked +return_type_name = unsigned int diff --git a/lib/includes/gnutls/gnutls.h.in b/lib/includes/gnutls/gnutls.h.in index de48a75101..5c380199fe 100644 --- a/lib/includes/gnutls/gnutls.h.in +++ b/lib/includes/gnutls/gnutls.h.in @@ -2181,8 +2181,8 @@ int gnutls_ocsp_status_request_get(gnutls_session_t session, gnutls_datum_t * response); #define GNUTLS_OCSP_SR_IS_AVAIL 1 -int gnutls_ocsp_status_request_is_checked(gnutls_session_t session, - unsigned int flags); +unsigned gnutls_ocsp_status_request_is_checked(gnutls_session_t session, + unsigned int flags); int gnutls_ocsp_status_request_get2(gnutls_session_t session, diff --git a/lib/ocsp-api.c b/lib/ocsp-api.c index 685378a696..28f7e05a26 100644 --- a/lib/ocsp-api.c +++ b/lib/ocsp-api.c @@ -597,7 +597,8 @@ gnutls_certificate_get_ocsp_expiration(gnutls_certificate_credentials_t sc, * * When flags are zero this function returns non-zero if a valid OCSP status * response was included in the TLS handshake. That is, an OCSP status response - * which is not too old or superseded. It returns zero otherwise. + * which is not too old, superseded or marks the certificate as revoked. + * It returns zero otherwise. * * When the flag %GNUTLS_OCSP_SR_IS_AVAIL is specified, the function * returns non-zero if an OCSP status response was included in the handshake @@ -612,12 +613,12 @@ gnutls_certificate_get_ocsp_expiration(gnutls_certificate_credentials_t sc, * under TLS 1.3, which is the first version of TLS that allows cliend-side OCSP * responses. * - * Returns: non zero if the response was valid, or a zero if it wasn't sent, + * Returns: Non-zero if the response was valid, or a zero if it wasn't sent, * or sent and was invalid. * * Since: 3.1.4 **/ -int +unsigned gnutls_ocsp_status_request_is_checked(gnutls_session_t session, unsigned int flags) { |