From 07a53cecc3220b3811f9db7514e49235fff32b94 Mon Sep 17 00:00:00 2001
From: Stef Walter <stefw@gnome.org>
Date: Fri, 15 Mar 2013 09:22:57 +0100
Subject: extract: Combine trust policy when extracting

 * Collapse multiple identical certificates coming from different
   tokens. Note that if a certificate should not be placed multiple
   times on a token. We cannot know which one to respect.
 * Add a new extract filter: --trust-policy
   This extracts all anchor and blacklist information

https://bugs.freedesktop.org/show_bug.cgi?id=61497
---
 tools/extract.h | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'tools/extract.h')

diff --git a/tools/extract.h b/tools/extract.h
index dfd3a33..85405e5 100644
--- a/tools/extract.h
+++ b/tools/extract.h
@@ -46,11 +46,15 @@
 enum {
 	/* These overlap with the flags in save.h, so start higher */
 	P11_EXTRACT_COMMENT = 1 << 10,
+	P11_EXTRACT_ANCHORS = 1 << 11,
+	P11_EXTRACT_BLACKLIST = 1 << 12,
+	P11_EXTRACT_COLLAPSE = 1 << 13,
 };
 
 typedef struct {
 	p11_dict *asn1_defs;
 	p11_dict *limit_to_purposes;
+	p11_dict *already_seen;
 	char *destination;
 	int flags;
 
-- 
cgit v1.1