diff options
| author | Ludovic Courtès <ludo@chbouib.org> | 2007-06-01 00:53:53 +0200 |
|---|---|---|
| committer | Ludovic Courtès <ludo@chbouib.org> | 2007-06-01 00:53:53 +0200 |
| commit | ac2c37fd6a7820ebc10182b02d5d9e9d075981d9 (patch) | |
| tree | b8eac07ff3f23a978088dc8fefb8870cb99f6f8b | |
| parent | f469cfce51318df3b629d9af210ce4b4e587fac0 (diff) | |
| parent | faa8f90cdca11e7bf5b60e0656c6e97a4847d47b (diff) | |
| download | gnutls-ac2c37fd6a7820ebc10182b02d5d9e9d075981d9.tar.gz | |
Merge branch 'master' of git://repo.or.cz/gnutls
| -rw-r--r-- | doc/gnutls.texi | 210 | ||||
| -rw-r--r-- | gl/netinet_in_.h | 13 | ||||
| -rw-r--r-- | gl/string_.h | 12 | ||||
| -rw-r--r-- | gl/sys_socket_.h | 15 | ||||
| -rw-r--r-- | lgl/Makefile.am | 4 | ||||
| -rw-r--r-- | lgl/float_.h | 6 | ||||
| -rw-r--r-- | lgl/fseeko.c | 2 | ||||
| -rw-r--r-- | lgl/lseek.c | 8 | ||||
| -rw-r--r-- | lgl/m4/iconv.m4 | 3 | ||||
| -rw-r--r-- | lgl/m4/lseek.m4 | 30 | ||||
| -rw-r--r-- | lgl/m4/stdio_h.m4 | 6 | ||||
| -rw-r--r-- | lgl/stdint_.h | 12 | ||||
| -rw-r--r-- | lgl/stdio_.h | 44 | ||||
| -rw-r--r-- | lgl/string_.h | 12 | ||||
| -rw-r--r-- | lgl/sys_socket_.h | 15 | ||||
| -rw-r--r-- | lgl/sys_stat_.h | 10 | ||||
| -rw-r--r-- | lgl/time_.h | 92 | ||||
| -rw-r--r-- | lgl/unistd_.h | 11 | ||||
| -rw-r--r-- | lgl/wchar_.h | 15 |
19 files changed, 311 insertions, 209 deletions
diff --git a/doc/gnutls.texi b/doc/gnutls.texi index 57a1089dcc..292fa476da 100644 --- a/doc/gnutls.texi +++ b/doc/gnutls.texi @@ -65,35 +65,35 @@ Documentation License''. @contents @ifnottex -@node Top, Preface, (dir), (dir) +@node Top @top GNU TLS @insertcopying @end ifnottex @menu -* Preface:: -* The Library:: -* Introduction to TLS:: -* Authentication methods:: -* More on certificate authentication:: -* How to use TLS in application protocols:: -* How to use GnuTLS in applications:: -* Included programs:: -* Function reference:: -* Certificate to XML convertion functions:: -* All the supported ciphersuites in GnuTLS:: -* Guile Bindings:: -* Internal architecture of GnuTLS:: -* Copying Information:: -* Concept Index:: +* Preface:: +* The Library:: +* Introduction to TLS:: +* Authentication methods:: +* More on certificate authentication:: +* How to use TLS in application protocols:: +* How to use GnuTLS in applications:: +* Included programs:: +* Function reference:: +* Certificate to XML convertion functions:: +* All the supported ciphersuites in GnuTLS:: +* Guile Bindings:: +* Internal architecture of GnuTLS:: +* Copying Information:: +* Concept Index:: * Function and Data Index:: @c * @mybibnode{}:: -* Bibliography:: +* Bibliography:: @end menu -@node Preface, The Library, Top, Top +@node Preface @chapter Preface This document tries to demonstrate and explain the @acronym{GnuTLS} @@ -122,7 +122,7 @@ Updated versions of the @acronym{GnuTLS} software and this document will be available from @url{http://www.gnutls.org/} and @url{http://www.gnu.org/software/gnutls/}. -@node The Library, Introduction to TLS, Preface, Top +@node The Library @chapter The Library In brief @acronym{GnuTLS} can be described as a library which offers an API @@ -188,7 +188,7 @@ small library, with the required features, can be generated. * Callback functions:: @end menu -@node General Idea, Error handling, The Library, The Library +@node General Idea @section General Idea A brief description of how @acronym{GnuTLS} works internally is shown @@ -235,7 +235,7 @@ and if the session ID sent by the client, matches a stored session, the stored session will be retrieved, and the new session will be a resumed one, and will share the same session ID with the previous one. -@node Error handling, Memory handling, General Idea, The Library +@node Error handling @section Error handling In @acronym{GnuTLS} most functions return an integer type as a result. In @@ -258,7 +258,7 @@ If any non fatal errors, that require an action, are to be returned by a function, these error codes will be documented in the function's reference. @xref{Error Codes}, for all the error codes. -@node Memory handling, Callback functions, Error handling, The Library +@node Memory handling @section Memory handling @acronym{GnuTLS} internally handles heap allocated objects @@ -276,7 +276,7 @@ cases where even the system's swap memory is not considered secure. See the documentation of @acronym{Libgcrypt} for more information. -@node Callback functions, , Memory handling, The Library +@node Callback functions @section Callback functions @cindex Callback functions @@ -309,7 +309,7 @@ should allocate and free memory using the functions shown below. @end itemize -@node Introduction to TLS, Authentication methods, The Library, Top +@node Introduction to TLS @chapter Introduction to @acronym{TLS} @acronym{TLS} stands for ``Transport Layer Security'' and is the @@ -337,7 +337,7 @@ differences of these protocols are minor. Older protocols such as * On SSL 2 and older protocols:: @end menu -@node TLS layers, The transport layer, Introduction to TLS, Introduction to TLS +@node TLS layers @section TLS layers @cindex TLS Layers @@ -359,7 +359,7 @@ protocol. The protocol layering in TLS is shown in the figure below. @image{layers,12cm,8cm} -@node The transport layer, The TLS record protocol, TLS layers, Introduction to TLS +@node The transport layer @section The transport layer @cindex Transport protocol @@ -405,7 +405,7 @@ will use the Berkeley Sockets functions. In this case work, thus making it easy to add @acronym{TLS} support to existing TCP/IP servers. -@node The TLS record protocol, The TLS Alert Protocol, The transport layer, Introduction to TLS +@node The TLS record protocol @section The TLS record protocol @cindex Record protocol @@ -440,7 +440,7 @@ just after the handshake protocol has finished. * Weaknesses and countermeasures:: @end menu -@node Encryption algorithms used in the record layer, Compression algorithms used in the record layer, The TLS record protocol, The TLS record protocol +@node Encryption algorithms used in the record layer @subsection Encryption algorithms used in the record layer @cindex Symmetric encryption algorithms @@ -490,7 +490,7 @@ bits of data. @end table -@node Compression algorithms used in the record layer, Weaknesses and countermeasures, Encryption algorithms used in the record layer, The TLS record protocol +@node Compression algorithms used in the record layer @subsection Compression algorithms used in the record layer @cindex Compression algorithms @@ -525,7 +525,7 @@ and the private extensions are enabled. @end table -@node Weaknesses and countermeasures, , Compression algorithms used in the record layer, The TLS record protocol +@node Weaknesses and countermeasures @subsection Weaknesses and countermeasures Some weaknesses that may affect the security of the Record layer have @@ -552,7 +552,7 @@ Those weaknesses were solved in @acronym{TLS} 1.1 @xcite{RFC4346} which is imple in @acronym{GnuTLS}. For a detailed discussion see the archives of the TLS Working Group mailing list and the paper @xcite{CBCATT}. -@node The TLS Alert Protocol, The TLS Handshake Protocol, The TLS record protocol, Introduction to TLS +@node The TLS Alert Protocol @section The TLS Alert Protocol @anchor{The Alert Protocol} @cindex Alert protocol @@ -587,7 +587,7 @@ Returns the name, in a character array, of the given alert. @end table -@node The TLS Handshake Protocol, TLS Extensions, The TLS Alert Protocol, Introduction to TLS +@node The TLS Handshake Protocol @section The TLS Handshake Protocol @anchor{The Handshake Protocol} @cindex Handshake protocol @@ -745,7 +745,7 @@ It might also be useful to be able to check for expired sessions in order to remove them, and save space. The function @ref{gnutls_db_check_entry} is provided for that reason. -@node TLS Extensions, On SSL 2 and older protocols, The TLS Handshake Protocol, Introduction to TLS +@node TLS Extensions @section TLS Extensions @cindex TLS Extensions @@ -787,7 +787,7 @@ begins within the first handshake packet. The functions used to enable this extension, or to retrieve the name sent by a client. -@node On SSL 2 and older protocols, , TLS Extensions, Introduction to TLS +@node On SSL 2 and older protocols @section On SSL 2 and older protocols @cindex SSL 2 @@ -834,7 +834,7 @@ Other protocols such as Microsoft's @acronym{PCT} 1 and @acronym{PCT} 2 were not implemented because they were also abandoned and deprecated by @acronym{SSL} 3.0 and later @acronym{TLS} 1.0. -@node Authentication methods, More on certificate authentication, Introduction to TLS, Top +@node Authentication methods @chapter Authentication methods The @acronym{TLS} protocol provides confidentiality and encryption, @@ -863,7 +863,7 @@ are: * Parameters stored in credentials:: @end menu -@node Certificate authentication, Anonymous authentication, Authentication methods, Authentication methods +@node Certificate authentication @section Certificate authentication @subsection Authentication using @acronym{X.509} certificates @@ -1012,7 +1012,7 @@ Signature Standard. @end table -@node Anonymous authentication, Authentication using SRP, Certificate authentication, Authentication methods +@node Anonymous authentication @section Anonymous authentication @cindex Anonymous authentication @@ -1037,7 +1037,7 @@ This algorithm exchanges Diffie Hellman parameters. @end table -@node Authentication using SRP, Authentication using PSK, Anonymous authentication, Authentication methods +@node Authentication using SRP @section Authentication using @acronym{SRP} @cindex @acronym{SRP} authentication @@ -1124,7 +1124,7 @@ manipulate the required parameters for @acronym{SRP} authentication is also included. @xref{srptool}, for more information. -@node Authentication using PSK, Authentication and credentials, Authentication using SRP, Authentication methods +@node Authentication using PSK @section Authentication using @acronym{PSK} @cindex @acronym{PSK} authentication @@ -1176,7 +1176,7 @@ are included in @acronym{GnuTLS}, and may be used to generate and maintain @acronym{PSK} keys. -@node Authentication and credentials, Parameters stored in credentials, Authentication using PSK, Authentication methods +@node Authentication and credentials @section Authentication and credentials In @acronym{GnuTLS} every key exchange method is associated with a @@ -1218,7 +1218,7 @@ Key exchange algorithms and the corresponding credential types: @end multitable -@node Parameters stored in credentials, , Authentication and credentials, Authentication methods +@node Parameters stored in credentials @section Parameters stored in credentials Several parameters such as the ones used for Diffie-Hellman @@ -1277,7 +1277,7 @@ int main() @} @end example -@node More on certificate authentication, How to use TLS in application protocols, Authentication methods, Top +@node More on certificate authentication @chapter More on certificate authentication @anchor{Certificate Authentication} @cindex Certificate authentication @@ -1288,7 +1288,7 @@ int main() * Digital signatures:: @end menu -@node The X.509 trust model, The OpenPGP trust model, More on certificate authentication, More on certificate authentication +@node The X.509 trust model @section The @acronym{X.509} trust model @cindex @acronym{X.509} certificates @@ -1313,7 +1313,7 @@ handling @acronym{X.509} certificates is described at section * PKCS #12 structures:: @end menu -@node X.509 certificates, Verifying X.509 certificate paths, The X.509 trust model, The X.509 trust model +@node X.509 certificates @subsection @acronym{X.509} certificates An @acronym{X.509} certificate usually contains information about the @@ -1403,7 +1403,7 @@ functions for @acronym{X.509} certificate handling have their prototypes in @file{gnutls/x509.h}. An example program to demonstrate the @acronym{X.509} parsing capabilities can be found at section @ref{ex:x509-info}. -@node Verifying X.509 certificate paths, PKCS #10 certificate requests, X.509 certificates, The X.509 trust model +@node Verifying X.509 certificate paths @subsection Verifying @acronym{X.509} certificate paths @cindex Verifying certificate paths @@ -1486,7 +1486,7 @@ about the peer's identity. It is required to verify if the certificate's owner is the one you expect. For more information consult @xcite{RFC2818} and section @ref{ex:verify} for an example. -@node PKCS #10 certificate requests, PKCS #12 structures, Verifying X.509 certificate paths, The X.509 trust model +@node PKCS #10 certificate requests @subsection @acronym{PKCS} #10 certificate requests @cindex Certificate requests @cindex @acronym{PKCS} #10 @@ -1502,7 +1502,7 @@ In @acronym{GnuTLS} the @acronym{PKCS} #10 structures are handled using the @code{gnutls_x509_crq_t} type. An example of a certificate request generation can be found at section @ref{ex:crq}. -@node PKCS #12 structures, , PKCS #10 certificate requests, The X.509 trust model +@node PKCS #12 structures @subsection @acronym{PKCS} #12 structures @cindex @acronym{PKCS} #12 @@ -1520,7 +1520,7 @@ in order for its data to be accessed. An example of a @acronym{PKCS} #12 structure generation can be found at section @ref{ex:pkcs12}. -@node The OpenPGP trust model, Digital signatures, The X.509 trust model, More on certificate authentication +@node The OpenPGP trust model @section The @acronym{OpenPGP} trust model @cindex @acronym{OpenPGP} Keys @@ -1598,13 +1598,13 @@ These algorithms have been broken and should not be trusted. @end table -@node Digital signatures, , The OpenPGP trust model, More on certificate authentication +@node Digital signatures @section Digital signatures @cindex Digital signatures @include signatures.texi -@node How to use TLS in application protocols, How to use GnuTLS in applications, More on certificate authentication, Top +@node How to use TLS in application protocols @chapter How to use @acronym{TLS} in application protocols This chapter is intended to provide some hints on how to use the @@ -1617,7 +1617,7 @@ but may be extended to other ones too. * Upward negotiation:: @end menu -@node Separate ports, Upward negotiation, How to use TLS in application protocols, How to use TLS in application protocols +@node Separate ports @section Separate ports Traditionally @acronym{SSL} was used in application protocols by @@ -1644,7 +1644,7 @@ service, which is unnecessary complication. Due to the fact that there is a limitation on the available privileged ports, this approach was soon obsoleted. -@node Upward negotiation, , Separate ports, How to use TLS in application protocols +@node Upward negotiation @section Upward negotiation Other application protocols@footnote{See LDAP, IMAP etc.} use a @@ -1735,7 +1735,7 @@ starts, in order to send the correct certificate, use the correct password file@footnote{in @acronym{SRP} authentication}, or anything else! -@node How to use GnuTLS in applications, Included programs, How to use TLS in application protocols, Top +@node How to use GnuTLS in applications @chapter How to use @acronym{GnuTLS} in applications @anchor{examples} @cindex Example programs @@ -1749,7 +1749,7 @@ else! * Compatibility with the OpenSSL library:: @end menu -@node Preparation, Multi-threaded applications, How to use GnuTLS in applications, How to use GnuTLS in applications +@node Preparation @section Preparation To use @acronym{GnuTLS}, you have to perform some changes to your @@ -1762,7 +1762,7 @@ the following subsections. * Building the source:: @end menu -@node Headers, Version check, Preparation, Preparation +@node Headers @subsection Headers All the data types and functions of the @acronym{GnuTLS} library are @@ -1774,7 +1774,7 @@ The extra functionality of the @acronym{GnuTLS-extra} library is available by including the header file @file{gnutls/extra.h} in your programs. -@node Version check, Building the source, Headers, Preparation +@node Version check @subsection Version check It is often desirable to check that the version of `gnutls' used is @@ -1784,7 +1784,7 @@ with the dynamic linker an old version is actually used. So you may want to check that the version is okay right after program startup. See the function @ref{gnutls_check_version}. -@node Building the source, , Version check, Preparation +@node Building the source @subsection Building the source If you want to compile a source file including the `gnutls/gnutls.h' @@ -1830,7 +1830,7 @@ specifying both options to `libgnutls-config': gcc -o foo foo.c `libgnutls-config --cflags --libs` @end example -@node Multi-threaded applications, Client examples, Preparation, How to use GnuTLS in applications +@node Multi-threaded applications @section Multi-threaded applications Although the @acronym{GnuTLS} library is thread safe by design, some @@ -1894,7 +1894,7 @@ int main() @end example @end itemize -@node Client examples, Server examples, Multi-threaded applications, How to use GnuTLS in applications +@node Client examples @section Client examples This section contains examples of @acronym{TLS} and @acronym{SSL} @@ -1915,7 +1915,7 @@ implemented by another example. * Helper function for TCP connections:: @end menu -@node Simple client example with anonymous authentication, Simple client example with X.509 certificate support, Client examples, Client examples +@node Simple client example with anonymous authentication @subsection Simple client example with anonymous authentication The simplest client using TLS is the one that doesn't do any @@ -1926,7 +1926,7 @@ However, the data is integrity and privacy protected. @verbatiminclude examples/ex-client1.c -@node Simple client example with X.509 certificate support, Obtaining session information, Simple client example with anonymous authentication, Client examples +@node Simple client example with X.509 certificate support @subsection Simple client example with @acronym{X.509} certificate support Let's assume now that we want to create a TCP client which @@ -1939,7 +1939,7 @@ redefining them. @verbatiminclude examples/ex-client2.c -@node Obtaining session information, Verifying peer's certificate, Simple client example with X.509 certificate support, Client examples +@node Obtaining session information @subsection Obtaining session information Most of the times it is desirable to know the security properties of @@ -1950,7 +1950,7 @@ if called after a successful @ref{gnutls_handshake}. @verbatiminclude examples/ex-session-info.c -@node Verifying peer's certificate, Using a callback to select the certificate to use, Obtaining session information, Client examples +@node Verifying peer's certificate @subsection Verifying peer's certificate @anchor{ex:verify} @@ -1968,7 +1968,7 @@ verification output. @verbatiminclude examples/ex-verify.c -@node Using a callback to select the certificate to use, Client with Resume capability example, Verifying peer's certificate, Client examples +@node Using a callback to select the certificate to use @subsection Using a callback to select the certificate to use There are cases where a client holds several certificate and key @@ -1978,7 +1978,7 @@ certificate selection callback. @verbatiminclude examples/ex-cert-select.c -@node Client with Resume capability example, Simple client example with SRP authentication, Using a callback to select the certificate to use, Client examples +@node Client with Resume capability example @subsection Client with Resume capability example @anchor{ex:resume-client} @@ -1989,7 +1989,7 @@ establish a new connection using the previously negotiated data. @verbatiminclude examples/ex-client-resume.c -@node Simple client example with SRP authentication, Simple client example with TLS/IA support, Client with Resume capability example, Client examples +@node Simple client example with SRP authentication @subsection Simple client example with @acronym{SRP} authentication The following client is a very simple @acronym{SRP} @acronym{TLS} @@ -1999,7 +1999,7 @@ itself using a certificate, and in that case it has to be verified. @verbatiminclude examples/ex-client-srp.c -@node Simple client example with TLS/IA support, Simple client example with authorization support, Simple client example with SRP authentication, Client examples +@node Simple client example with TLS/IA support @subsection Simple client example with @acronym{TLS/IA} support The following client is a simple client which uses the @@ -2007,7 +2007,7 @@ The following client is a simple client which uses the @verbatiminclude examples/ex-client-tlsia.c -@node Simple client example with authorization support, Helper function for TCP connections, Simple client example with TLS/IA support, Client examples +@node Simple client example with authorization support @subsection Simple client example with authorization support The following client require that the server sends authorization data, @@ -2016,7 +2016,7 @@ For authentication, X.509 is used. @verbatiminclude examples/ex-client-authz.c -@node Helper function for TCP connections, , Simple client example with authorization support, Client examples +@node Helper function for TCP connections @subsection Helper function for TCP connections This helper function abstracts away TCP connection handling from the @@ -2024,7 +2024,7 @@ other examples. It is required to build some examples. @verbatiminclude examples/tcp.c -@node Server examples, Miscellaneous examples, Client examples, How to use GnuTLS in applications +@node Server examples @section Server examples This section contains examples of @acronym{TLS} and @acronym{SSL} @@ -2039,7 +2039,7 @@ servers, using @acronym{GnuTLS}. * Echo Server with authorization support:: @end menu -@node Echo Server with X.509 authentication, Echo Server with X.509 authentication II, Server examples, Server examples +@node Echo Server with X.509 authentication @subsection Echo Server with @acronym{X.509} authentication This example is a very simple echo server which supports @@ -2047,7 +2047,7 @@ This example is a very simple echo server which supports @verbatiminclude examples/ex-serv1.c -@node Echo Server with X.509 authentication II, Echo Server with OpenPGP authentication, Echo Server with X.509 authentication, Server examples +@node Echo Server with X.509 authentication II @subsection Echo Server with @acronym{X.509} authentication II The following example is a server which supports @acronym{X.509} @@ -2056,7 +2056,7 @@ the DHE ciphersuites and session resuming. @verbatiminclude examples/ex-serv-export.c -@node Echo Server with OpenPGP authentication, Echo Server with SRP authentication, Echo Server with X.509 authentication II, Server examples +@node Echo Server with OpenPGP authentication @subsection Echo Server with @acronym{OpenPGP} authentication @cindex @acronym{OpenPGP} Server @@ -2068,7 +2068,7 @@ them to keep these examples as simple as possible. @verbatiminclude examples/ex-serv-pgp.c -@node Echo Server with SRP authentication, Echo Server with anonymous authentication, Echo Server with OpenPGP authentication, Server examples +@node Echo Server with SRP authentication @subsection Echo Server with @acronym{SRP} authentication This is a server which supports @acronym{SRP} authentication. It is @@ -2077,7 +2077,7 @@ server. Here it is separate for simplicity. @verbatiminclude examples/ex-serv-srp.c -@node Echo Server with anonymous authentication, Echo Server with authorization support, Echo Server with SRP authentication, Server examples +@node Echo Server with anonymous authentication @subsection Echo Server with anonymous authentication This example server support anonymous authentication, and could be @@ -2085,7 +2085,7 @@ used to serve the example client for anonymous authentication. @verbatiminclude examples/ex-serv-anon.c -@node Echo Server with authorization support, , Echo Server with anonymous authentication, Server examples +@node Echo Server with authorization support @subsection Echo Server with authorization support This example server support authorization data, and can be used to @@ -2093,7 +2093,7 @@ serve the example client with authorization support. @verbatiminclude examples/ex-serv-authz.c -@node Miscellaneous examples, Compatibility with the OpenSSL library, Server examples, How to use GnuTLS in applications +@node Miscellaneous examples @section Miscellaneous examples @menu @@ -2103,7 +2103,7 @@ serve the example client with authorization support. * PKCS #12 structure generation:: @end menu -@node Checking for an alert, X.509 certificate parsing example, Miscellaneous examples, Miscellaneous examples +@node Checking for an alert @subsection Checking for an alert This is a function that checks if an alert has been received in the @@ -2111,7 +2111,7 @@ current session. @verbatiminclude examples/ex-alert.c -@node X.509 certificate parsing example, Certificate request generation, Checking for an alert, Miscellaneous examples +@node X.509 certificate parsing example @subsection @acronym{X.509} certificate parsing example @anchor{ex:x509-info} @@ -2121,7 +2121,7 @@ information about it. @verbatiminclude examples/ex-x509-info.c -@node Certificate request generation, PKCS #12 structure generation, X.509 certificate parsing example, Miscellaneous examples +@node Certificate request generation @subsection Certificate request generation @anchor{ex:crq} @@ -2131,7 +2131,7 @@ which should return a signed certificate. @verbatiminclude examples/ex-crq.c -@node PKCS #12 structure generation, , Certificate request generation, Miscellaneous examples +@node PKCS #12 structure generation @subsection @acronym{PKCS} #12 structure generation @anchor{ex:pkcs12} @@ -2140,7 +2140,7 @@ structure. @verbatiminclude examples/ex-pkcs12.c -@node Compatibility with the OpenSSL library, , Miscellaneous examples, How to use GnuTLS in applications +@node Compatibility with the OpenSSL library @section Compatibility with the OpenSSL library @cindex OpenSSL @@ -2163,7 +2163,7 @@ Current limitations imposed by the compatibility layer include: @end itemize -@node Included programs, Function reference, How to use GnuTLS in applications, Top +@node Included programs @chapter Included programs Included with @acronym{GnuTLS} are also a few command line tools that @@ -2178,7 +2178,7 @@ application. The applications are discussed in this chapter. * Invoking certtool:: @end menu -@node Invoking srptool, Invoking gnutls-cli, Included programs, Included programs +@node Invoking srptool @section Invoking srptool @anchor{srptool} @cindex srptool @@ -2223,7 +2223,7 @@ $ srptool --passwd /etc/tpasswd \ @end itemize -@node Invoking gnutls-cli, Invoking gnutls-cli-debug, Invoking srptool, Included programs +@node Invoking gnutls-cli @section Invoking gnutls-cli @cindex gnutls-cli @@ -2282,7 +2282,7 @@ Usage: gnutls-cli [options] hostname --copyright prints the program's license @end verbatim -@node Invoking gnutls-cli-debug, Invoking gnutls-serv, Invoking gnutls-cli, Included programs +@node Invoking gnutls-cli-debug @section Invoking gnutls-cli-debug @cindex gnutls-cli-debug @@ -2330,7 +2330,7 @@ Checking for SRP authentication support (TLS extension)... yes Checking for OpenPGP authentication support (TLS extension)... no @end smallexample -@node Invoking gnutls-serv, Invoking certtool, Invoking gnutls-cli-debug, Included programs +@node Invoking gnutls-serv @section Invoking gnutls-serv @cindex gnutls-serv @@ -2557,7 +2557,7 @@ gnutls-serv --http \ --pskpasswd psk-passwd.txt @end example -@node Invoking certtool, , Invoking gnutls-serv, Included programs +@node Invoking certtool @section Invoking certtool @cindex certtool @@ -2830,7 +2830,7 @@ signing_key #time_stamping_key @end example -@node Function reference, Certificate to XML convertion functions, Included programs, Top +@node Function reference @chapter Function reference @cindex Function reference @@ -2843,7 +2843,7 @@ signing_key * Error codes and descriptions:: @end menu -@node Core functions, X.509 certificate functions, Function reference, Function reference +@node Core functions @section Core functions The prototypes for the following functions lie in @@ -2851,7 +2851,7 @@ The prototypes for the following functions lie in @include gnutls-api.texi -@node X.509 certificate functions, GnuTLS-extra functions, Core functions, Function reference +@node X.509 certificate functions @section @acronym{X.509} certificate functions @anchor{sec:x509api} @cindex @acronym{X.509} Functions @@ -2861,7 +2861,7 @@ Their prototypes lie in @file{gnutls/x509.h}. @include x509-api.texi -@node GnuTLS-extra functions, OpenPGP functions, X.509 certificate functions, Function reference +@node GnuTLS-extra functions @section @acronym{GnuTLS-extra} functions @cindex @acronym{GnuTLS-extra} functions @@ -2871,7 +2871,7 @@ called @code{gnutls-extra}. The prototypes for this library lie in @include gnutls-extra-api.texi -@node OpenPGP functions, TLS Inner Application (TLS/IA) functions, GnuTLS-extra functions, Function reference +@node OpenPGP functions @section @acronym{OpenPGP} functions @cindex @acronym{OpenPGP} functions @anchor{sec:openpgpapi} @@ -2883,7 +2883,7 @@ to be able to use these functions (@pxref{GnuTLS-extra functions}). @include pgp-api.texi -@node TLS Inner Application (TLS/IA) functions, Error codes and descriptions, OpenPGP functions, Function reference +@node TLS Inner Application (TLS/IA) functions @section @acronym{TLS} Inner Application (@acronym{TLS/IA}) functions @cindex @acronym{TLS} Inner Application (@acronym{TLS/IA}) functions @cindex Inner Application (@acronym{TLS/IA}) functions @@ -2940,7 +2940,7 @@ client functions with the corresponding server functions. @include ia-api.texi -@node Error codes and descriptions, , TLS Inner Application (TLS/IA) functions, Function reference +@node Error codes and descriptions @section Error codes and descriptions @anchor{Error Codes} @cindex Error codes @@ -2952,7 +2952,7 @@ expressions. @include error_codes.texi -@node Certificate to XML convertion functions, All the supported ciphersuites in GnuTLS, Function reference, Top +@node Certificate to XML convertion functions @chapter Certificate to @acronym{XML} convertion functions @cindex Certificate to XML convertion @@ -2972,7 +2972,7 @@ functions: * An OpenPGP key:: @end menu -@node An X.509 certificate, An OpenPGP key, Certificate to XML convertion functions, Certificate to XML convertion functions +@node An X.509 certificate @section An @acronym{X.509} certificate @smallexample @@ -3175,7 +3175,7 @@ functions: </gnutls:x509:certificate> @end smallexample -@node An OpenPGP key, , An X.509 certificate, Certificate to XML convertion functions +@node An OpenPGP key @section An @acronym{OpenPGP} key @smallexample @@ -3256,7 +3256,7 @@ functions: </gnutls:openpgp:key> @end smallexample -@node All the supported ciphersuites in GnuTLS, Guile Bindings, Certificate to XML convertion functions, Top +@node All the supported ciphersuites in GnuTLS @chapter All the supported ciphersuites in @acronym{GnuTLS} @anchor{ciphersuites} @cindex Ciphersuites @@ -3389,21 +3389,19 @@ functions: @end multitable - @c @c Guile Bindings @c @include guile.texi - -@node Internal architecture of GnuTLS, Copying Information, Guile Bindings, Top +@node Internal architecture of GnuTLS @chapter Internal architecture of GnuTLS @cindex Internal architecture @include internals.texi -@node Copying Information, Concept Index, Internal architecture of GnuTLS, Top +@node Copying Information @appendix Copying Information @menu @@ -3416,17 +3414,17 @@ functions: @include lgpl.texi @include gpl.texi -@node Concept Index, Function and Data Index, Copying Information, Top +@node Concept Index @unnumbered Concept Index @printindex cp -@node Function and Data Index, Bibliography, Concept Index, Top +@node Function and Data Index @unnumbered Function and Data Index @printindex fn -@node Bibliography, , Function and Data Index, Top +@node Bibliography @unnumbered Bibliography @table @asis diff --git a/gl/netinet_in_.h b/gl/netinet_in_.h index d46ec78e9b..2585d33e3a 100644 --- a/gl/netinet_in_.h +++ b/gl/netinet_in_.h @@ -16,20 +16,26 @@ Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ #ifndef _GL_NETINET_IN_H -#define _GL_NETINET_IN_H #if @HAVE_NETINET_IN_H@ /* On many platforms, <netinet/in.h> assumes prior inclusion of <sys/types.h>. */ - # include <sys/types.h> + +/* The include_next requires a split double-inclusion guard. */ # if @HAVE_INCLUDE_NEXT@ # include_next <netinet/in.h> # else # include @ABSOLUTE_NETINET_IN_H@ # endif -#else + +#endif + +#ifndef _GL_NETINET_IN_H +#define _GL_NETINET_IN_H + +#if !@HAVE_NETINET_IN_H@ /* A platform that lacks <netinet/in.h>. */ @@ -38,3 +44,4 @@ #endif #endif /* _GL_NETINET_IN_H */ +#endif /* _GL_NETINET_IN_H */ diff --git a/gl/string_.h b/gl/string_.h index 43801e823e..6ec72c3e7f 100644 --- a/gl/string_.h +++ b/gl/string_.h @@ -16,17 +16,18 @@ along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ +#ifndef _GL_STRING_H + +/* The include_next requires a split double-inclusion guard. */ #if @HAVE_INCLUDE_NEXT@ # include_next <string.h> +#else +# include @ABSOLUTE_STRING_H@ #endif #ifndef _GL_STRING_H #define _GL_STRING_H -#if ! @HAVE_INCLUDE_NEXT@ -# include @ABSOLUTE_STRING_H@ -#endif - /* The definition of GL_LINK_WARNING is copied here. */ @@ -541,4 +542,5 @@ extern char * mbstok_r (char *string, const char *delim, char **save_ptr); } #endif -#endif +#endif /* _GL_STRING_H */ +#endif /* _GL_STRING_H */ diff --git a/gl/sys_socket_.h b/gl/sys_socket_.h index 7ad5bca09a..c7eb649025 100644 --- a/gl/sys_socket_.h +++ b/gl/sys_socket_.h @@ -16,28 +16,32 @@ along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ -#ifndef _GL_SYS_SOCKET_H -#define _GL_SYS_SOCKET_H - /* This file is supposed to be used on platforms that lack <sys/socket.h> and on platforms where <sys/socket.h> cannot be included standalone. It is intended to provide definitions and prototypes needed by an application. */ +#ifndef _GL_SYS_SOCKET_H + #if @HAVE_SYS_SOCKET_H@ /* On many platforms, <sys/socket.h> assumes prior inclusion of <sys/types.h>. */ - # include <sys/types.h> +/* The include_next requires a split double-inclusion guard. */ # if @HAVE_INCLUDE_NEXT@ # include_next <sys/socket.h> # else # include @ABSOLUTE_SYS_SOCKET_H@ # endif -#else +#endif + +#ifndef _GL_SYS_SOCKET_H +#define _GL_SYS_SOCKET_H + +#if !@HAVE_SYS_SOCKET_H@ /* A platform that lacks <sys/socket.h>. @@ -88,3 +92,4 @@ #endif /* HAVE_SYS_SOCKET_H */ #endif /* _GL_SYS_SOCKET_H */ +#endif /* _GL_SYS_SOCKET_H */ diff --git a/lgl/Makefile.am b/lgl/Makefile.am index 8bb2ee4e75..e4af9e1863 100644 --- a/lgl/Makefile.am +++ b/lgl/Makefile.am @@ -390,7 +390,9 @@ stdio.h: stdio_.h -e 's|@''GNULIB_VSNPRINTF''@|$(GNULIB_VSNPRINTF)|g' \ -e 's|@''GNULIB_VSPRINTF_POSIX''@|$(GNULIB_VSPRINTF_POSIX)|g' \ -e 's|@''GNULIB_VASPRINTF''@|$(GNULIB_VASPRINTF)|g' \ + -e 's|@''GNULIB_FSEEK''@|$(GNULIB_FSEEK)|g' \ -e 's|@''GNULIB_FSEEKO''@|$(GNULIB_FSEEKO)|g' \ + -e 's|@''GNULIB_FTELL''@|$(GNULIB_FTELL)|g' \ -e 's|@''GNULIB_FTELLO''@|$(GNULIB_FTELLO)|g' \ -e 's|@''GNULIB_FFLUSH''@|$(GNULIB_FFLUSH)|g' \ -e 's|@''REPLACE_FPRINTF''@|$(REPLACE_FPRINTF)|g' \ @@ -406,7 +408,9 @@ stdio.h: stdio_.h -e 's|@''HAVE_VASPRINTF''@|$(HAVE_VASPRINTF)|g' \ -e 's|@''REPLACE_VASPRINTF''@|$(REPLACE_VASPRINTF)|g' \ -e 's|@''REPLACE_FSEEKO''@|$(REPLACE_FSEEKO)|g' \ + -e 's|@''REPLACE_FSEEK''@|$(REPLACE_FSEEK)|g' \ -e 's|@''REPLACE_FTELLO''@|$(REPLACE_FTELLO)|g' \ + -e 's|@''REPLACE_FTELL''@|$(REPLACE_FTELL)|g' \ -e 's|@''REPLACE_FFLUSH''@|$(REPLACE_FFLUSH)|g' \ -e '/definition of GL_LINK_WARNING/r $(LINK_WARNING_H)' \ < $(srcdir)/stdio_.h; \ diff --git a/lgl/float_.h b/lgl/float_.h index 28f39b8b57..7f796e2d62 100644 --- a/lgl/float_.h +++ b/lgl/float_.h @@ -17,14 +17,17 @@ Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ #ifndef _GL_FLOAT_H -#define _GL_FLOAT_H +/* The include_next requires a split double-inclusion guard. */ #if @HAVE_INCLUDE_NEXT@ # include_next <float.h> #else # include @ABSOLUTE_FLOAT_H@ #endif +#ifndef _GL_FLOAT_H +#define _GL_FLOAT_H + /* 'long double' properties. */ #if defined __i386__ && defined __BEOS__ /* Number of mantissa units, in base FLT_RADIX. */ @@ -57,3 +60,4 @@ #endif #endif /* _GL_FLOAT_H */ +#endif /* _GL_FLOAT_H */ diff --git a/lgl/fseeko.c b/lgl/fseeko.c index b85e18bd7c..ee94376b8b 100644 --- a/lgl/fseeko.c +++ b/lgl/fseeko.c @@ -1,4 +1,4 @@ -/* An fseek() function that, together with fflush(), is POSIX compliant. +/* An fseeko() function that, together with fflush(), is POSIX compliant. Copyright (C) 2007 Free Software Foundation, Inc. This program is free software; you can redistribute it and/or modify diff --git a/lgl/lseek.c b/lgl/lseek.c index be9cd81c6d..1fffab01f7 100644 --- a/lgl/lseek.c +++ b/lgl/lseek.c @@ -31,7 +31,13 @@ off_t rpl_lseek (int fd, off_t offset, int whence) { /* mingw lseek mistakenly succeeds on pipes, sockets, and terminals. */ - if (GetFileType ((HANDLE) _get_osfhandle (fd)) != FILE_TYPE_DISK) + HANDLE h = (HANDLE) _get_osfhandle (fd); + if (h == INVALID_HANDLE_VALUE) + { + errno = EBADF; + return -1; + } + if (GetFileType (h) != FILE_TYPE_DISK) { errno = ESPIPE; return -1; diff --git a/lgl/m4/iconv.m4 b/lgl/m4/iconv.m4 index 32239e31df..8e36b52d4d 100644 --- a/lgl/m4/iconv.m4 +++ b/lgl/m4/iconv.m4 @@ -1,4 +1,4 @@ -# iconv.m4 serial AM5 (gettext-0.16.2) +# iconv.m4 serial AM6 (gettext-0.16.2) dnl Copyright (C) 2000-2002, 2007 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, @@ -117,6 +117,7 @@ int main () && iconv_open ("UTF-8", "IBM-eucJP") == (iconv_t)(-1) /* Try HP-UX names. */ && iconv_open ("utf8", "eucJP") == (iconv_t)(-1)) + return 1; return 0; }], [am_cv_func_iconv_works=yes], [am_cv_func_iconv_works=no], [case "$host_os" in diff --git a/lgl/m4/lseek.m4 b/lgl/m4/lseek.m4 index 075c2f42c2..4877bfd2e9 100644 --- a/lgl/m4/lseek.m4 +++ b/lgl/m4/lseek.m4 @@ -1,4 +1,4 @@ -# lseek.m4 serial 1 +# lseek.m4 serial 2 dnl Copyright (C) 2007 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, @@ -9,12 +9,32 @@ AC_DEFUN([gl_FUNC_LSEEK], AC_REQUIRE([gl_UNISTD_H_DEFAULTS]) AC_REQUIRE([AC_PROG_CC]) AC_CACHE_CHECK([whether lseek detects pipes], [gl_cv_func_lseek_pipe], - [AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include <unistd.h>], -[#if (defined _WIN32 || defined __WIN32__) && ! defined __CYGWIN__ + [if test $cross_compiling = no; then + AC_LINK_IFELSE([ +#include <sys/types.h> /* for off_t */ +#include <stdio.h> /* for SEEK_CUR */ +#include <unistd.h> +int main () +{ + /* Exit with success only if stdin is seekable. */ + return lseek (0, (off_t)0, SEEK_CUR) < 0; +}], + [if test -s conftest$ac_exeext \ + && ./conftest$ac_exeext < conftest.$ac_ext \ + && { echo hi | ./conftest$ac_exeext; test $? = 1; }; then + gl_cv_func_lseek_pipe=yes + else + gl_cv_func_lseek_pipe=no + fi], + [gl_cv_func_lseek_pipe=no]) + else + AC_LINK_IFELSE([ +#if (defined _WIN32 || defined __WIN32__) && ! defined __CYGWIN__ /* mingw mistakenly returns 0 when trying to seek on pipes. */ Choke me. -#endif])], - [gl_cv_func_lseek_pipe=yes], [gl_cv_func_lseek_pipe=no])]) +#endif], + [gl_cv_func_lseek_pipe=yes], [gl_cv_func_lseek_pipe=no]) + fi]) if test $gl_cv_func_lseek_pipe = no; then gl_REPLACE_LSEEK fi diff --git a/lgl/m4/stdio_h.m4 b/lgl/m4/stdio_h.m4 index 2cddcc3313..955c91216e 100644 --- a/lgl/m4/stdio_h.m4 +++ b/lgl/m4/stdio_h.m4 @@ -1,4 +1,4 @@ -# stdio_h.m4 serial 5 +# stdio_h.m4 serial 6 dnl Copyright (C) 2007 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, @@ -30,7 +30,9 @@ AC_DEFUN([gl_STDIO_H_DEFAULTS], GNULIB_VSNPRINTF=0; AC_SUBST([GNULIB_VSNPRINTF]) GNULIB_VSPRINTF_POSIX=0; AC_SUBST([GNULIB_VSPRINTF_POSIX]) GNULIB_VASPRINTF=0; AC_SUBST([GNULIB_VASPRINTF]) + GNULIB_FSEEK=0; AC_SUBST([GNULIB_FSEEK]) GNULIB_FSEEKO=0; AC_SUBST([GNULIB_FSEEKO]) + GNULIB_FTELL=0; AC_SUBST([GNULIB_FTELL]) GNULIB_FTELLO=0; AC_SUBST([GNULIB_FTELLO]) GNULIB_FFLUSH=0; AC_SUBST([GNULIB_FFLUSH]) dnl Assume proper GNU behavior unless another module says otherwise. @@ -48,8 +50,10 @@ AC_DEFUN([gl_STDIO_H_DEFAULTS], REPLACE_VASPRINTF=0; AC_SUBST([REPLACE_VASPRINTF]) HAVE_FSEEKO=1; AC_SUBST([HAVE_FSEEKO]) REPLACE_FSEEKO=0; AC_SUBST([REPLACE_FSEEKO]) + REPLACE_FSEEK=0; AC_SUBST([REPLACE_FSEEK]) HAVE_FTELLO=1; AC_SUBST([HAVE_FTELLO]) REPLACE_FTELLO=0; AC_SUBST([REPLACE_FTELLO]) + REPLACE_FTELL=0; AC_SUBST([REPLACE_FTELL]) REPLACE_FFLUSH=0; AC_SUBST([REPLACE_FFLUSH]) ]) diff --git a/lgl/stdint_.h b/lgl/stdint_.h index 22eaddf933..57f1bddb6b 100644 --- a/lgl/stdint_.h +++ b/lgl/stdint_.h @@ -16,14 +16,13 @@ along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ -#ifndef _GL_STDINT_H -#define _GL_STDINT_H - /* * ISO C 99 <stdint.h> for platforms that lack it. * <http://www.opengroup.org/susv3xbd/stdint.h.html> */ +#ifndef _GL_STDINT_H + /* Get those types that are already defined in other system include files, so that we can "#define int8_t signed char" below without worrying about a later system include file containing a "typedef @@ -42,7 +41,8 @@ /* Other systems may have an incomplete or buggy <stdint.h>. Include it before <inttypes.h>, since any "#include <stdint.h>" in <inttypes.h> would reinclude us, skipping our contents because - _GL_STDINT_H is defined. */ + _GL_STDINT_H is defined. + The include_next requires a split double-inclusion guard. */ # if @HAVE_INCLUDE_NEXT@ # include_next <stdint.h> # else @@ -50,6 +50,9 @@ # endif #endif +#ifndef _GL_STDINT_H +#define _GL_STDINT_H + /* <sys/types.h> defines some of the stdint.h types as well, on glibc, IRIX 6.5, and OpenBSD 3.8 (via <machine/types.h>). AIX 5.2 <sys/types.h> isn't needed and causes troubles. @@ -506,3 +509,4 @@ #endif /* !defined __cplusplus || defined __STDC_CONSTANT_MACROS */ #endif /* _GL_STDINT_H */ +#endif /* _GL_STDINT_H */ diff --git a/lgl/stdio_.h b/lgl/stdio_.h index 2c33e489a4..a3c6081e36 100644 --- a/lgl/stdio_.h +++ b/lgl/stdio_.h @@ -28,17 +28,18 @@ #else /* Normal invocation convention. */ +#ifndef _GL_STDIO_H + +/* The include_next requires a split double-inclusion guard. */ #if @HAVE_INCLUDE_NEXT@ # include_next <stdio.h> +#else +# include @ABSOLUTE_STDIO_H@ #endif #ifndef _GL_STDIO_H #define _GL_STDIO_H -#if ! @HAVE_INCLUDE_NEXT@ -# include @ABSOLUTE_STDIO_H@ -#endif - #include <stdarg.h> #include <stddef.h> @@ -232,7 +233,19 @@ extern int fseeko (FILE *fp, off_t offset, int whence); fseeko (f, o, w)) #endif -#if defined GNULIB_POSIXCHECK +#if @GNULIB_FSEEK@ && @REPLACE_FSEEK@ +extern int rpl_fseek (FILE *fp, long offset, int whence); +# undef fseek +# if defined GNULIB_POSIXCHECK +# define fseek(f,o,w) \ + (GL_LINK_WARNING ("fseek cannot handle files larger than 4 GB " \ + "on 32-bit platforms - " \ + "use fseeko function for handling of large files"), \ + rpl_fseek (f, o, w)) +# else +# define fseek rpl_fseek +# endif +#elif defined GNULIB_POSIXCHECK # ifndef fseek # define fseek(f,o,w) \ (GL_LINK_WARNING ("fseek cannot handle files larger than 4 GB " \ @@ -256,7 +269,19 @@ extern off_t ftello (FILE *fp); ftello (f)) #endif -#if defined GNULIB_POSIXCHECK +#if @GNULIB_FTELL@ && @REPLACE_FTELL@ +extern long rpl_ftell (FILE *fp); +# undef ftell +# if GNULIB_POSIXCHECK +# define ftell(f) \ + (GL_LINK_WARNING ("ftell cannot handle files larger than 4 GB " \ + "on 32-bit platforms - " \ + "use ftello function for handling of large files"), \ + rpl_ftell (f)) +# else +# define ftell rpl_ftell +# endif +#elif defined GNULIB_POSIXCHECK # ifndef ftell # define ftell(f) \ (GL_LINK_WARNING ("ftell cannot handle files larger than 4 GB " \ @@ -270,7 +295,11 @@ extern off_t ftello (FILE *fp); # if @REPLACE_FFLUSH@ # define fflush rpl_fflush /* Flush all pending data on STREAM according to POSIX rules. Both - output and seekable input streams are supported. */ + output and seekable input streams are supported. + Note! LOSS OF DATA can occur if fflush is applied on an input stream + that is _not_seekable_ or on an update stream that is _not_seekable_ + and in which the most recent operation was input. Seekability can + be tested with lseek(fileno(fp),0,SEEK_CUR). */ extern int fflush (FILE *gl_stream); # endif #elif defined GNULIB_POSIXCHECK @@ -287,4 +316,5 @@ extern off_t ftello (FILE *fp); #endif #endif /* _GL_STDIO_H */ +#endif /* _GL_STDIO_H */ #endif diff --git a/lgl/string_.h b/lgl/string_.h index 44ba1193bf..75f2925334 100644 --- a/lgl/string_.h +++ b/lgl/string_.h @@ -16,17 +16,18 @@ along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ +#ifndef _GL_STRING_H + +/* The include_next requires a split double-inclusion guard. */ #if @HAVE_INCLUDE_NEXT@ # include_next <string.h> +#else +# include @ABSOLUTE_STRING_H@ #endif #ifndef _GL_STRING_H #define _GL_STRING_H -#if ! @HAVE_INCLUDE_NEXT@ -# include @ABSOLUTE_STRING_H@ -#endif - /* The definition of GL_LINK_WARNING is copied here. */ @@ -541,4 +542,5 @@ extern char * mbstok_r (char *string, const char *delim, char **save_ptr); } #endif -#endif +#endif /* _GL_STRING_H */ +#endif /* _GL_STRING_H */ diff --git a/lgl/sys_socket_.h b/lgl/sys_socket_.h index e6eb21ff52..014ff5b6d0 100644 --- a/lgl/sys_socket_.h +++ b/lgl/sys_socket_.h @@ -16,28 +16,32 @@ along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ -#ifndef _GL_SYS_SOCKET_H -#define _GL_SYS_SOCKET_H - /* This file is supposed to be used on platforms that lack <sys/socket.h> and on platforms where <sys/socket.h> cannot be included standalone. It is intended to provide definitions and prototypes needed by an application. */ +#ifndef _GL_SYS_SOCKET_H + #if @HAVE_SYS_SOCKET_H@ /* On many platforms, <sys/socket.h> assumes prior inclusion of <sys/types.h>. */ - # include <sys/types.h> +/* The include_next requires a split double-inclusion guard. */ # if @HAVE_INCLUDE_NEXT@ # include_next <sys/socket.h> # else # include @ABSOLUTE_SYS_SOCKET_H@ # endif -#else +#endif + +#ifndef _GL_SYS_SOCKET_H +#define _GL_SYS_SOCKET_H + +#if !@HAVE_SYS_SOCKET_H@ /* A platform that lacks <sys/socket.h>. @@ -88,3 +92,4 @@ #endif /* HAVE_SYS_SOCKET_H */ #endif /* _GL_SYS_SOCKET_H */ +#endif /* _GL_SYS_SOCKET_H */ diff --git a/lgl/sys_stat_.h b/lgl/sys_stat_.h index 5331b60ad8..e1e9e67a4c 100644 --- a/lgl/sys_stat_.h +++ b/lgl/sys_stat_.h @@ -17,19 +17,22 @@ /* Written by Eric Blake, Paul Eggert, and Jim Meyering. */ -#ifndef _GL_SYS_STAT_H -#define _GL_SYS_STAT_H - /* This file is supposed to be used on platforms where <sys/stat.h> is incomplete. It is intended to provide definitions and prototypes needed by an application. Start with what the system provides. */ +#ifndef _GL_SYS_STAT_H + +/* The include_next requires a split double-inclusion guard. */ #if @HAVE_INCLUDE_NEXT@ # include_next <sys/stat.h> #else # include @ABSOLUTE_SYS_STAT_H@ #endif +#ifndef _GL_SYS_STAT_H +#define _GL_SYS_STAT_H + #ifndef S_IFMT # define S_IFMT 0170000 #endif @@ -278,3 +281,4 @@ rpl_mkdir (char const *name, mode_t mode) #endif #endif /* _GL_SYS_STAT_H */ +#endif /* _GL_SYS_STAT_H */ diff --git a/lgl/time_.h b/lgl/time_.h index b11d374ab0..5f3ae37575 100644 --- a/lgl/time_.h +++ b/lgl/time_.h @@ -30,94 +30,96 @@ #else /* Normal invocation convention. */ -# if @HAVE_INCLUDE_NEXT@ -# include_next <time.h> -# endif - # if ! defined _GL_TIME_H -# define _GL_TIME_H -# if ! @HAVE_INCLUDE_NEXT@ +/* The include_next requires a split double-inclusion guard. */ +# if @HAVE_INCLUDE_NEXT@ +# include_next <time.h> +# else # include @ABSOLUTE_TIME_H@ # endif -# ifdef __cplusplus +# if ! defined _GL_TIME_H +# define _GL_TIME_H + +# ifdef __cplusplus extern "C" { -# endif +# endif /* Some systems don't define struct timespec (e.g., AIX 4.1, Ultrix 4.3). Or they define it with the wrong member names or define it in <sys/time.h> (e.g., FreeBSD circa 1997). */ -# if ! @TIME_H_DEFINES_STRUCT_TIMESPEC@ -# if @SYS_TIME_H_DEFINES_STRUCT_TIMESPEC@ -# include <sys/time.h> -# else -# undef timespec -# define timespec rpl_timespec +# if ! @TIME_H_DEFINES_STRUCT_TIMESPEC@ +# if @SYS_TIME_H_DEFINES_STRUCT_TIMESPEC@ +# include <sys/time.h> +# else +# undef timespec +# define timespec rpl_timespec struct timespec { time_t tv_sec; long int tv_nsec; }; +# endif # endif -# endif /* Sleep for at least RQTP seconds unless interrupted, If interrupted, return -1 and store the remaining time into RMTP. See <http://www.opengroup.org/susv3xsh/nanosleep.html>. */ -# if @REPLACE_NANOSLEEP@ -# define nanosleep rpl_nanosleep +# if @REPLACE_NANOSLEEP@ +# define nanosleep rpl_nanosleep int nanosleep (struct timespec const *__rqtp, struct timespec *__rmtp); -# endif +# endif /* Convert TIMER to RESULT, assuming local time and UTC respectively. See <http://www.opengroup.org/susv3xsh/localtime_r.html> and <http://www.opengroup.org/susv3xsh/gmtime_r.html>. */ -# if @REPLACE_LOCALTIME_R@ -# undef localtime_r -# define localtime_r rpl_localtime_r -# undef gmtime_r -# define gmtime_r rpl_gmtime_r +# if @REPLACE_LOCALTIME_R@ +# undef localtime_r +# define localtime_r rpl_localtime_r +# undef gmtime_r +# define gmtime_r rpl_gmtime_r struct tm *localtime_r (time_t const *restrict __timer, struct tm *restrict __result); struct tm *gmtime_r (time_t const *restrict __timer, struct tm *restrict __result); -# endif +# endif /* Parse BUF as a time stamp, assuming FORMAT specifies its layout, and store the resulting broken-down time into TM. See <http://www.opengroup.org/susv3xsh/strptime.html>. */ -# if @REPLACE_STRPTIME@ -# undef strptime -# define strptime rpl_strptime +# if @REPLACE_STRPTIME@ +# undef strptime +# define strptime rpl_strptime char *strptime (char const *restrict __buf, char const *restrict __format, struct tm *restrict __tm); -# endif +# endif /* Convert TM to a time_t value, assuming UTC. */ -# if @REPLACE_TIMEGM@ -# undef timegm -# define timegm rpl_timegm +# if @REPLACE_TIMEGM@ +# undef timegm +# define timegm rpl_timegm time_t timegm (struct tm *__tm); -# endif +# endif /* Encourage applications to avoid unsafe functions that can overrun buffers when given outlandish struct tm values. Portable applications should use strftime (or even sprintf) instead. */ -# if GNULIB_PORTCHECK -# undef asctime -# define asctime eschew_asctime -# undef asctime_r -# define asctime_r eschew_asctime_r -# undef ctime -# define ctime eschew_ctime -# undef ctime_r -# define ctime_r eschew_ctime_r -# endif +# if GNULIB_PORTCHECK +# undef asctime +# define asctime eschew_asctime +# undef asctime_r +# define asctime_r eschew_asctime_r +# undef ctime +# define ctime eschew_ctime +# undef ctime_r +# define ctime_r eschew_ctime_r +# endif -# ifdef __cplusplus +# ifdef __cplusplus } -# endif +# endif -# endif +# endif /* _GL_TIME_H */ +# endif /* _GL_TIME_H */ #endif diff --git a/lgl/unistd_.h b/lgl/unistd_.h index 4112507445..ce55683c11 100644 --- a/lgl/unistd_.h +++ b/lgl/unistd_.h @@ -16,8 +16,8 @@ Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. */ #ifndef _GL_UNISTD_H -#define _GL_UNISTD_H +/* The include_next requires a split double-inclusion guard. */ #if @HAVE_UNISTD_H@ # if @HAVE_INCLUDE_NEXT@ # include_next <unistd.h> @@ -26,6 +26,9 @@ # endif #endif +#ifndef _GL_UNISTD_H +#define _GL_UNISTD_H + /* mingw doesn't define the SEEK_* macros in <unistd.h>. */ #if !(defined SEEK_CUR && defined SEEK_END && defined SEEK_SET) # include <stdio.h> @@ -188,9 +191,8 @@ extern int getlogin_r (char *name, size_t size); #elif defined GNULIB_POSIXCHECK # undef lseek # define lseek(f,o,w) \ - (GL_LINK_WARNING ("lseek does not fail with ESPIPE on non-seekable " \ - "files on some systems - " \ - "use gnulib module lseek for portability"), \ + (GL_LINK_WARNING ("lseek does not fail with ESPIPE on pipes on some " \ + "systems - use gnulib module lseek for portability"), \ lseek (f, o, w)) #endif @@ -237,3 +239,4 @@ extern unsigned int sleep (unsigned int n); #endif /* _GL_UNISTD_H */ +#endif /* _GL_UNISTD_H */ diff --git a/lgl/wchar_.h b/lgl/wchar_.h index 50ace41ec3..45652fc0d4 100644 --- a/lgl/wchar_.h +++ b/lgl/wchar_.h @@ -25,13 +25,7 @@ * For now, this just ensures proper prerequisite inclusion order. */ -#if @HAVE_INCLUDE_NEXT@ -# include <stdio.h> -# include_next <wchar.h> -#endif - #ifndef _GL_WCHAR_H -#define _GL_WCHAR_H /* Tru64 with Desktop Toolkit C has a bug: <stdio.h> must be included before <wchar.h>. @@ -42,8 +36,15 @@ #include <time.h> /* Include the original <wchar.h>. */ -#if ! @HAVE_INCLUDE_NEXT@ +/* The include_next requires a split double-inclusion guard. */ +#if @HAVE_INCLUDE_NEXT@ +# include_next <wchar.h> +#else # include @ABSOLUTE_WCHAR_H@ #endif +#ifndef _GL_WCHAR_H +#define _GL_WCHAR_H + +#endif /* _GL_WCHAR_H */ #endif /* _GL_WCHAR_H */ |