|
NAME | SYNOPSIS | ARGUMENTS | DESCRIPTION | NOTE | RETURNS | SINCE | REPORTING BUGS | COPYRIGHT | SEE ALSO | COLOPHON |
gnutls_certificate_set_ocsp_status_request_mem(3)_ocsp_status_request_mem(3)
gnutls_certificate_set_ocsp_status_request_mem - API function
#include <gnutls/gnutls.h>
int
gnutls_certificate_set_ocsp_status_request_mem(gnutls_certificate_credentials_t
sc, const gnutls_datum_t * resp_data, unsigned idx,
gnutls_x509_crt_fmt_t fmt);
gnutls_certificate_credentials_t sc
is a credentials structure.
const gnutls_datum_t * resp_data
a memory buffer holding an OCSP response
unsigned idx
is a certificate index as returned by
gnutls_certificate_set_key() and friends
gnutls_x509_crt_fmt_t fmt
is PEM or DER
This function sets the OCSP responses to be sent to the peer for the
certificate chain specified by idx . When fmt is set to PEM,
multiple responses can be loaded.
the ability to set multiple OCSP responses per credential structure
via the index idx was added in version 3.5.6. To keep backwards
compatibility, it requires using gnutls_certificate_set_flags() with
the GNUTLS_CERTIFICATE_API_V2 flag to make the set certificate
functions return an index usable by this function.
This function must be called after setting any certificates, and
cannot be used for certificates that are provided via a callback --
that is when gnutls_certificate_set_retrieve_function() is used.
This function can be called multiple times when multiple responses
which apply to the certificate chain are available. If the response
provided does not match any certificates present in the chain, the
code GNUTLS_E_OCSP_MISMATCH_WITH_CERTS is returned. If the response
is already expired at the time of loading the code GNUTLS_E_EXPIRED
is returned.
On success, the number of loaded responses is returned, otherwise a
negative error code.
3.6.3
Report bugs to <bugs@gnutls.org>.
Home page: https://www.gnutls.org
Copyright © 2001-2019 Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification,
are permitted in any medium without royalty provided the copyright
notice and this notice are preserved.
The full documentation for gnutls is maintained as a Texinfo manual.
If the /usr/share/doc/gnutls/ directory does not contain the HTML
form visit
https://www.gnutls.org/manual/
This page is part of the GnuTLS (GnuTLS Transport Layer Security
Library) project. Information about the project can be found at
⟨http://www.gnutls.org/⟩. If you have a bug report for this manual
page, send it to bugs@gnutls.org. This page was obtained from the
tarball gnutls-3.6.9.tar.xz fetched from
⟨http://www.gnutls.org/download.html⟩ on 2020-08-13. If you discover
any rendering problems in this HTML version of the page, or you
believe there is a better or more up-to-date source for the page, or
you have corrections or improvements to the information in this
COLOPHON (which is not part of the original manual page), send a mail
to man-pages@man7.org
gnutls gnutls_ce3r.t6i.f9icate_set_ocsp_status_request_mem(3)