1 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
4 <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
6 <meta name="generator" content="DocBook XSL Stylesheets V1.76.1">
7 <link rel="home" href="index.html" title="GnuTLS API Reference Manual">
8 <link rel="up" href="intro.html" title="GnuTLS API Reference Manual">
9 <link rel="prev" href="gnutls-extra.html" title="extra">
10 <link rel="next" href="gnutls-pkcs11.html" title="pkcs11">
11 <meta name="generator" content="GTK-Doc V1.18 (XML mode)">
12 <link rel="stylesheet" href="style.css" type="text/css">
14 <body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF">
15 <table class="navigation" id="top" width="100%" summary="Navigation header" cellpadding="2" cellspacing="2">
17 <td><a accesskey="p" href="gnutls-extra.html"><img src="left.png" width="24" height="24" border="0" alt="Prev"></a></td>
18 <td><a accesskey="u" href="intro.html"><img src="up.png" width="24" height="24" border="0" alt="Up"></a></td>
19 <td><a accesskey="h" href="index.html"><img src="home.png" width="24" height="24" border="0" alt="Home"></a></td>
20 <th width="100%" align="center">GnuTLS API Reference Manual</th>
21 <td><a accesskey="n" href="gnutls-pkcs11.html"><img src="right.png" width="24" height="24" border="0" alt="Next"></a></td>
23 <tr><td colspan="5" class="shortcuts">
24 <a href="#gnutls-x509.synopsis" class="shortcut">Top</a>
26 <a href="#gnutls-x509.description" class="shortcut">Description</a>
29 <div class="refentry">
30 <a name="gnutls-x509"></a><div class="titlepage"></div>
31 <div class="refnamediv"><table width="100%"><tr>
33 <h2><span class="refentrytitle"><a name="gnutls-x509.top_of_page"></a>x509</span></h2>
36 <td valign="top" align="right"></td>
38 <div class="refsynopsisdiv">
39 <a name="gnutls-x509.synopsis"></a><h2>Synopsis</h2>
40 <pre class="synopsis">#define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-COUNTRY-NAME:CAPS" title="GNUTLS_OID_X520_COUNTRY_NAME">GNUTLS_OID_X520_COUNTRY_NAME</a>
41 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-ORGANIZATION-NAME:CAPS" title="GNUTLS_OID_X520_ORGANIZATION_NAME">GNUTLS_OID_X520_ORGANIZATION_NAME</a>
42 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-ORGANIZATIONAL-UNIT-NAME:CAPS" title="GNUTLS_OID_X520_ORGANIZATIONAL_UNIT_NAME">GNUTLS_OID_X520_ORGANIZATIONAL_UNIT_NAME</a>
43 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-COMMON-NAME:CAPS" title="GNUTLS_OID_X520_COMMON_NAME">GNUTLS_OID_X520_COMMON_NAME</a>
44 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-LOCALITY-NAME:CAPS" title="GNUTLS_OID_X520_LOCALITY_NAME">GNUTLS_OID_X520_LOCALITY_NAME</a>
45 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-STATE-OR-PROVINCE-NAME:CAPS" title="GNUTLS_OID_X520_STATE_OR_PROVINCE_NAME">GNUTLS_OID_X520_STATE_OR_PROVINCE_NAME</a>
46 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-INITIALS:CAPS" title="GNUTLS_OID_X520_INITIALS">GNUTLS_OID_X520_INITIALS</a>
47 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-GENERATION-QUALIFIER:CAPS" title="GNUTLS_OID_X520_GENERATION_QUALIFIER">GNUTLS_OID_X520_GENERATION_QUALIFIER</a>
48 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-SURNAME:CAPS" title="GNUTLS_OID_X520_SURNAME">GNUTLS_OID_X520_SURNAME</a>
49 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-GIVEN-NAME:CAPS" title="GNUTLS_OID_X520_GIVEN_NAME">GNUTLS_OID_X520_GIVEN_NAME</a>
50 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-TITLE:CAPS" title="GNUTLS_OID_X520_TITLE">GNUTLS_OID_X520_TITLE</a>
51 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-DN-QUALIFIER:CAPS" title="GNUTLS_OID_X520_DN_QUALIFIER">GNUTLS_OID_X520_DN_QUALIFIER</a>
52 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-PSEUDONYM:CAPS" title="GNUTLS_OID_X520_PSEUDONYM">GNUTLS_OID_X520_PSEUDONYM</a>
53 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-POSTALCODE:CAPS" title="GNUTLS_OID_X520_POSTALCODE">GNUTLS_OID_X520_POSTALCODE</a>
54 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-X520-NAME:CAPS" title="GNUTLS_OID_X520_NAME">GNUTLS_OID_X520_NAME</a>
55 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-LDAP-DC:CAPS" title="GNUTLS_OID_LDAP_DC">GNUTLS_OID_LDAP_DC</a>
56 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-LDAP-UID:CAPS" title="GNUTLS_OID_LDAP_UID">GNUTLS_OID_LDAP_UID</a>
57 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-PKCS9-EMAIL:CAPS" title="GNUTLS_OID_PKCS9_EMAIL">GNUTLS_OID_PKCS9_EMAIL</a>
58 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-PKIX-DATE-OF-BIRTH:CAPS" title="GNUTLS_OID_PKIX_DATE_OF_BIRTH">GNUTLS_OID_PKIX_DATE_OF_BIRTH</a>
59 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-PKIX-PLACE-OF-BIRTH:CAPS" title="GNUTLS_OID_PKIX_PLACE_OF_BIRTH">GNUTLS_OID_PKIX_PLACE_OF_BIRTH</a>
60 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-PKIX-GENDER:CAPS" title="GNUTLS_OID_PKIX_GENDER">GNUTLS_OID_PKIX_GENDER</a>
61 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-PKIX-COUNTRY-OF-CITIZENSHIP:CAPS" title="GNUTLS_OID_PKIX_COUNTRY_OF_CITIZENSHIP">GNUTLS_OID_PKIX_COUNTRY_OF_CITIZENSHIP</a>
62 #define <a class="link" href="gnutls-x509.html#GNUTLS-OID-PKIX-COUNTRY-OF-RESIDENCE:CAPS" title="GNUTLS_OID_PKIX_COUNTRY_OF_RESIDENCE">GNUTLS_OID_PKIX_COUNTRY_OF_RESIDENCE</a>
63 #define <a class="link" href="gnutls-x509.html#GNUTLS-KP-TLS-WWW-SERVER:CAPS" title="GNUTLS_KP_TLS_WWW_SERVER">GNUTLS_KP_TLS_WWW_SERVER</a>
64 #define <a class="link" href="gnutls-x509.html#GNUTLS-KP-TLS-WWW-CLIENT:CAPS" title="GNUTLS_KP_TLS_WWW_CLIENT">GNUTLS_KP_TLS_WWW_CLIENT</a>
65 #define <a class="link" href="gnutls-x509.html#GNUTLS-KP-CODE-SIGNING:CAPS" title="GNUTLS_KP_CODE_SIGNING">GNUTLS_KP_CODE_SIGNING</a>
66 #define <a class="link" href="gnutls-x509.html#GNUTLS-KP-EMAIL-PROTECTION:CAPS" title="GNUTLS_KP_EMAIL_PROTECTION">GNUTLS_KP_EMAIL_PROTECTION</a>
67 #define <a class="link" href="gnutls-x509.html#GNUTLS-KP-TIME-STAMPING:CAPS" title="GNUTLS_KP_TIME_STAMPING">GNUTLS_KP_TIME_STAMPING</a>
68 #define <a class="link" href="gnutls-x509.html#GNUTLS-KP-OCSP-SIGNING:CAPS" title="GNUTLS_KP_OCSP_SIGNING">GNUTLS_KP_OCSP_SIGNING</a>
69 #define <a class="link" href="gnutls-x509.html#GNUTLS-KP-IPSEC-IKE:CAPS" title="GNUTLS_KP_IPSEC_IKE">GNUTLS_KP_IPSEC_IKE</a>
70 #define <a class="link" href="gnutls-x509.html#GNUTLS-KP-ANY:CAPS" title="GNUTLS_KP_ANY">GNUTLS_KP_ANY</a>
71 #define <a class="link" href="gnutls-x509.html#GNUTLS-FSAN-SET:CAPS" title="GNUTLS_FSAN_SET">GNUTLS_FSAN_SET</a>
72 #define <a class="link" href="gnutls-x509.html#GNUTLS-FSAN-APPEND:CAPS" title="GNUTLS_FSAN_APPEND">GNUTLS_FSAN_APPEND</a>
73 enum <a class="link" href="gnutls-x509.html#gnutls-certificate-import-flags" title="enum gnutls_certificate_import_flags">gnutls_certificate_import_flags</a>;
74 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-init" title="gnutls_x509_crt_init ()">gnutls_x509_crt_init</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *cert</code></em>);
75 <span class="returnvalue">void</span> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-deinit" title="gnutls_x509_crt_deinit ()">gnutls_x509_crt_deinit</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>);
76 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-import" title="gnutls_x509_crt_import ()">gnutls_x509_crt_import</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
77 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
78 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>);
79 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-list-import" title="gnutls_x509_crt_list_import ()">gnutls_x509_crt_list_import</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *certs</code></em>,
80 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *cert_max</code></em>,
81 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
82 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
83 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);
84 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-export" title="gnutls_x509_crt_export ()">gnutls_x509_crt_export</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
85 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
86 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
87 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);
88 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-issuer-dn" title="gnutls_x509_crt_get_issuer_dn ()">gnutls_x509_crt_get_issuer_dn</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
89 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
90 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
91 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-issuer-dn-oid" title="gnutls_x509_crt_get_issuer_dn_oid ()">gnutls_x509_crt_get_issuer_dn_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
92 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
93 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
94 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);
95 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-issuer-dn-by-oid" title="gnutls_x509_crt_get_issuer_dn_by_oid ()">gnutls_x509_crt_get_issuer_dn_by_oid</a>
96 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
97 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
98 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
99 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
100 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
101 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
102 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-dn" title="gnutls_x509_crt_get_dn ()">gnutls_x509_crt_get_dn</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
103 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
104 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
105 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-dn-oid" title="gnutls_x509_crt_get_dn_oid ()">gnutls_x509_crt_get_dn_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
106 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
107 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
108 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);
109 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-dn-by-oid" title="gnutls_x509_crt_get_dn_by_oid ()">gnutls_x509_crt_get_dn_by_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
110 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
111 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
112 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
113 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
114 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
115 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-check-hostname" title="gnutls_x509_crt_check_hostname ()">gnutls_x509_crt_check_hostname</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
116 <em class="parameter"><code>const <span class="type">char</span> *hostname</code></em>);
117 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-signature-algorithm" title="gnutls_x509_crt_get_signature_algorithm ()">gnutls_x509_crt_get_signature_algorithm</a>
118 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>);
119 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-signature" title="gnutls_x509_crt_get_signature ()">gnutls_x509_crt_get_signature</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
120 <em class="parameter"><code><span class="type">char</span> *sig</code></em>,
121 <em class="parameter"><code><span class="type">size_t</span> *sizeof_sig</code></em>);
122 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-version" title="gnutls_x509_crt_get_version ()">gnutls_x509_crt_get_version</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>);
123 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-key-id" title="gnutls_x509_crt_get_key_id ()">gnutls_x509_crt_get_key_id</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
124 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
125 <em class="parameter"><code>unsigned <span class="type">char</span> *output_data</code></em>,
126 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);
127 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-authority-key-id" title="gnutls_x509_crt_set_authority_key_id ()">gnutls_x509_crt_set_authority_key_id</a>
128 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
129 <em class="parameter"><code>const <span class="type">void</span> *id</code></em>,
130 <em class="parameter"><code><span class="type">size_t</span> id_size</code></em>);
131 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-authority-key-id" title="gnutls_x509_crt_get_authority_key_id ()">gnutls_x509_crt_get_authority_key_id</a>
132 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
133 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
134 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
135 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
136 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject-key-id" title="gnutls_x509_crt_get_subject_key_id ()">gnutls_x509_crt_get_subject_key_id</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
137 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
138 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
139 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
140 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject-unique-id" title="gnutls_x509_crt_get_subject_unique_id ()">gnutls_x509_crt_get_subject_unique_id</a>
141 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
142 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
143 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
144 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-issuer-unique-id" title="gnutls_x509_crt_get_issuer_unique_id ()">gnutls_x509_crt_get_issuer_unique_id</a>
145 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
146 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
147 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
148 #define <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-UNUSED:CAPS" title="GNUTLS_CRL_REASON_UNUSED">GNUTLS_CRL_REASON_UNUSED</a>
149 #define <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-KEY-COMPROMISE:CAPS" title="GNUTLS_CRL_REASON_KEY_COMPROMISE">GNUTLS_CRL_REASON_KEY_COMPROMISE</a>
150 #define <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-CA-COMPROMISE:CAPS" title="GNUTLS_CRL_REASON_CA_COMPROMISE">GNUTLS_CRL_REASON_CA_COMPROMISE</a>
151 #define <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-AFFILIATION-CHANGED:CAPS" title="GNUTLS_CRL_REASON_AFFILIATION_CHANGED">GNUTLS_CRL_REASON_AFFILIATION_CHANGED</a>
152 #define <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-SUPERSEDED:CAPS" title="GNUTLS_CRL_REASON_SUPERSEDED">GNUTLS_CRL_REASON_SUPERSEDED</a>
153 #define <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-SUPERSEEDED:CAPS" title="GNUTLS_CRL_REASON_SUPERSEEDED">GNUTLS_CRL_REASON_SUPERSEEDED</a>
154 #define <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-CESSATION-OF-OPERATION:CAPS" title="GNUTLS_CRL_REASON_CESSATION_OF_OPERATION">GNUTLS_CRL_REASON_CESSATION_OF_OPERATION</a>
155 #define <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-CERTIFICATE-HOLD:CAPS" title="GNUTLS_CRL_REASON_CERTIFICATE_HOLD">GNUTLS_CRL_REASON_CERTIFICATE_HOLD</a>
156 #define <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-PRIVILEGE-WITHDRAWN:CAPS" title="GNUTLS_CRL_REASON_PRIVILEGE_WITHDRAWN">GNUTLS_CRL_REASON_PRIVILEGE_WITHDRAWN</a>
157 #define <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-AA-COMPROMISE:CAPS" title="GNUTLS_CRL_REASON_AA_COMPROMISE">GNUTLS_CRL_REASON_AA_COMPROMISE</a>
158 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-crl-dist-points" title="gnutls_x509_crt_get_crl_dist_points ()">gnutls_x509_crt_get_crl_dist_points</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
159 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
160 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
161 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
162 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *reason_flags</code></em>,
163 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
164 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-crl-dist-points2" title="gnutls_x509_crt_set_crl_dist_points2 ()">gnutls_x509_crt_set_crl_dist_points2</a>
165 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
166 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> type</code></em>,
167 <em class="parameter"><code>const <span class="type">void</span> *data</code></em>,
168 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> data_size</code></em>,
169 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> reason_flags</code></em>);
170 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-crl-dist-points" title="gnutls_x509_crt_set_crl_dist_points ()">gnutls_x509_crt_set_crl_dist_points</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
171 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> type</code></em>,
172 <em class="parameter"><code>const <span class="type">void</span> *data_string</code></em>,
173 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> reason_flags</code></em>);
174 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-cpy-crl-dist-points" title="gnutls_x509_crt_cpy_crl_dist_points ()">gnutls_x509_crt_cpy_crl_dist_points</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> dst</code></em>,
175 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> src</code></em>);
176 <span class="returnvalue">time_t</span> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-activation-time" title="gnutls_x509_crt_get_activation_time ()">gnutls_x509_crt_get_activation_time</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>);
177 <span class="returnvalue">time_t</span> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-expiration-time" title="gnutls_x509_crt_get_expiration_time ()">gnutls_x509_crt_get_expiration_time</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>);
178 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-serial" title="gnutls_x509_crt_get_serial ()">gnutls_x509_crt_get_serial</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
179 <em class="parameter"><code><span class="type">void</span> *result</code></em>,
180 <em class="parameter"><code><span class="type">size_t</span> *result_size</code></em>);
181 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-pk-algorithm" title="gnutls_x509_crt_get_pk_algorithm ()">gnutls_x509_crt_get_pk_algorithm</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
182 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *bits</code></em>);
183 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-pk-rsa-raw" title="gnutls_x509_crt_get_pk_rsa_raw ()">gnutls_x509_crt_get_pk_rsa_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
184 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *m</code></em>,
185 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e</code></em>);
186 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-pk-dsa-raw" title="gnutls_x509_crt_get_pk_dsa_raw ()">gnutls_x509_crt_get_pk_dsa_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
187 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *p</code></em>,
188 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *q</code></em>,
189 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *g</code></em>,
190 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *y</code></em>);
191 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject-alt-name" title="gnutls_x509_crt_get_subject_alt_name ()">gnutls_x509_crt_get_subject_alt_name</a>
192 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
193 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
194 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
195 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
196 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
197 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject-alt-name2" title="gnutls_x509_crt_get_subject_alt_name2 ()">gnutls_x509_crt_get_subject_alt_name2</a>
198 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
199 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
200 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
201 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
202 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *ret_type</code></em>,
203 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
204 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject-alt-othername-oid" title="gnutls_x509_crt_get_subject_alt_othername_oid ()">gnutls_x509_crt_get_subject_alt_othername_oid</a>
205 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
206 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
207 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
208 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>);
209 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-issuer-alt-name" title="gnutls_x509_crt_get_issuer_alt_name ()">gnutls_x509_crt_get_issuer_alt_name</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
210 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
211 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
212 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
213 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
214 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-issuer-alt-name2" title="gnutls_x509_crt_get_issuer_alt_name2 ()">gnutls_x509_crt_get_issuer_alt_name2</a>
215 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
216 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
217 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
218 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
219 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *ret_type</code></em>,
220 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
221 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-issuer-alt-othername-oid" title="gnutls_x509_crt_get_issuer_alt_othername_oid ()">gnutls_x509_crt_get_issuer_alt_othername_oid</a>
222 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
223 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
224 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
225 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>);
226 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-ca-status" title="gnutls_x509_crt_get_ca_status ()">gnutls_x509_crt_get_ca_status</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
227 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
228 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-basic-constraints" title="gnutls_x509_crt_get_basic_constraints ()">gnutls_x509_crt_get_basic_constraints</a>
229 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
230 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>,
231 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *ca</code></em>,
232 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *pathlen</code></em>);
233 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-key-usage" title="gnutls_x509_crt_get_key_usage ()">gnutls_x509_crt_get_key_usage</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
234 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *key_usage</code></em>,
235 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
236 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-key-usage" title="gnutls_x509_crt_set_key_usage ()">gnutls_x509_crt_set_key_usage</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
237 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> usage</code></em>);
238 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-proxy" title="gnutls_x509_crt_get_proxy ()">gnutls_x509_crt_get_proxy</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
239 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>,
240 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *pathlen</code></em>,
241 <em class="parameter"><code><span class="type">char</span> **policyLanguage</code></em>,
242 <em class="parameter"><code><span class="type">char</span> **policy</code></em>,
243 <em class="parameter"><code><span class="type">size_t</span> *sizeof_policy</code></em>);
244 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-dn-oid-known" title="gnutls_x509_dn_oid_known ()">gnutls_x509_dn_oid_known</a> (<em class="parameter"><code>const <span class="type">char</span> *oid</code></em>);
245 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-extension-oid" title="gnutls_x509_crt_get_extension_oid ()">gnutls_x509_crt_get_extension_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
246 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
247 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
248 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);
249 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-extension-by-oid" title="gnutls_x509_crt_get_extension_by_oid ()">gnutls_x509_crt_get_extension_by_oid</a>
250 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
251 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
252 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
253 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
254 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>,
255 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
256 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-extension-info" title="gnutls_x509_crt_get_extension_info ()">gnutls_x509_crt_get_extension_info</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
257 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
258 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
259 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>,
260 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
261 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-extension-data" title="gnutls_x509_crt_get_extension_data ()">gnutls_x509_crt_get_extension_data</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
262 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
263 <em class="parameter"><code><span class="type">void</span> *data</code></em>,
264 <em class="parameter"><code><span class="type">size_t</span> *sizeof_data</code></em>);
265 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-extension-by-oid" title="gnutls_x509_crt_set_extension_by_oid ()">gnutls_x509_crt_set_extension_by_oid</a>
266 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
267 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
268 <em class="parameter"><code>const <span class="type">void</span> *buf</code></em>,
269 <em class="parameter"><code><span class="type">size_t</span> sizeof_buf</code></em>,
270 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> critical</code></em>);
271 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-dn-by-oid" title="gnutls_x509_crt_set_dn_by_oid ()">gnutls_x509_crt_set_dn_by_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
272 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
273 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
274 <em class="parameter"><code>const <span class="type">void</span> *name</code></em>,
275 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> sizeof_name</code></em>);
276 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-issuer-dn-by-oid" title="gnutls_x509_crt_set_issuer_dn_by_oid ()">gnutls_x509_crt_set_issuer_dn_by_oid</a>
277 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
278 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
279 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
280 <em class="parameter"><code>const <span class="type">void</span> *name</code></em>,
281 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> sizeof_name</code></em>);
282 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-version" title="gnutls_x509_crt_set_version ()">gnutls_x509_crt_set_version</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
283 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> version</code></em>);
284 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-key" title="gnutls_x509_crt_set_key ()">gnutls_x509_crt_set_key</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
285 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);
286 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-ca-status" title="gnutls_x509_crt_set_ca_status ()">gnutls_x509_crt_set_ca_status</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
287 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> ca</code></em>);
288 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-basic-constraints" title="gnutls_x509_crt_set_basic_constraints ()">gnutls_x509_crt_set_basic_constraints</a>
289 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
290 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> ca</code></em>,
291 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> pathLenConstraint</code></em>);
292 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-subject-alternative-name" title="gnutls_x509_crt_set_subject_alternative_name ()">gnutls_x509_crt_set_subject_alternative_name</a>
293 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
294 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> type</code></em>,
295 <em class="parameter"><code>const <span class="type">char</span> *data_string</code></em>);
296 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-subject-alt-name" title="gnutls_x509_crt_set_subject_alt_name ()">gnutls_x509_crt_set_subject_alt_name</a>
297 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
298 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> type</code></em>,
299 <em class="parameter"><code>const <span class="type">void</span> *data</code></em>,
300 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> data_size</code></em>,
301 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);
302 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-sign" title="gnutls_x509_crt_sign ()">gnutls_x509_crt_sign</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
303 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> issuer</code></em>,
304 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> issuer_key</code></em>);
305 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-sign2" title="gnutls_x509_crt_sign2 ()">gnutls_x509_crt_sign2</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
306 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> issuer</code></em>,
307 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> issuer_key</code></em>,
308 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-digest-algorithm-t" title="enum gnutls_digest_algorithm_t"><span class="type">gnutls_digest_algorithm_t</span></a> dig</code></em>,
309 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);
310 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-activation-time" title="gnutls_x509_crt_set_activation_time ()">gnutls_x509_crt_set_activation_time</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
311 <em class="parameter"><code><span class="type">time_t</span> act_time</code></em>);
312 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-expiration-time" title="gnutls_x509_crt_set_expiration_time ()">gnutls_x509_crt_set_expiration_time</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
313 <em class="parameter"><code><span class="type">time_t</span> exp_time</code></em>);
314 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-serial" title="gnutls_x509_crt_set_serial ()">gnutls_x509_crt_set_serial</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
315 <em class="parameter"><code>const <span class="type">void</span> *serial</code></em>,
316 <em class="parameter"><code><span class="type">size_t</span> serial_size</code></em>);
317 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-subject-key-id" title="gnutls_x509_crt_set_subject_key_id ()">gnutls_x509_crt_set_subject_key_id</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
318 <em class="parameter"><code>const <span class="type">void</span> *id</code></em>,
319 <em class="parameter"><code><span class="type">size_t</span> id_size</code></em>);
320 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-proxy-dn" title="gnutls_x509_crt_set_proxy_dn ()">gnutls_x509_crt_set_proxy_dn</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
321 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> eecrt</code></em>,
322 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
323 <em class="parameter"><code>const <span class="type">void</span> *name</code></em>,
324 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> sizeof_name</code></em>);
325 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-proxy" title="gnutls_x509_crt_set_proxy ()">gnutls_x509_crt_set_proxy</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
326 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> pathLenConstraint</code></em>,
327 <em class="parameter"><code>const <span class="type">char</span> *policyLanguage</code></em>,
328 <em class="parameter"><code>const <span class="type">char</span> *policy</code></em>,
329 <em class="parameter"><code><span class="type">size_t</span> sizeof_policy</code></em>);
330 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-print" title="gnutls_x509_crt_print ()">gnutls_x509_crt_print</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
331 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-certificate-print-formats-t" title="enum gnutls_certificate_print_formats_t"><span class="type">gnutls_certificate_print_formats_t</span></a> format</code></em>,
332 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *out</code></em>);
333 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-print" title="gnutls_x509_crl_print ()">gnutls_x509_crl_print</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
334 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-certificate-print-formats-t" title="enum gnutls_certificate_print_formats_t"><span class="type">gnutls_certificate_print_formats_t</span></a> format</code></em>,
335 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *out</code></em>);
336 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-raw-issuer-dn" title="gnutls_x509_crt_get_raw_issuer_dn ()">gnutls_x509_crt_get_raw_issuer_dn</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
337 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *start</code></em>);
338 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-raw-dn" title="gnutls_x509_crt_get_raw_dn ()">gnutls_x509_crt_get_raw_dn</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
339 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *start</code></em>);
340 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-rdn-get" title="gnutls_x509_rdn_get ()">gnutls_x509_rdn_get</a> (<em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *idn</code></em>,
341 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
342 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
343 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-rdn-get-oid" title="gnutls_x509_rdn_get_oid ()">gnutls_x509_rdn_get_oid</a> (<em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *idn</code></em>,
344 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
345 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
346 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
347 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-rdn-get-by-oid" title="gnutls_x509_rdn_get_by_oid ()">gnutls_x509_rdn_get_by_oid</a> (<em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *idn</code></em>,
348 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
349 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
350 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
351 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
352 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
353 typedef <a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t">gnutls_x509_dn_t</a>;
354 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject" title="gnutls_x509_crt_get_subject ()">gnutls_x509_crt_get_subject</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
355 <em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> *dn</code></em>);
356 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-issuer" title="gnutls_x509_crt_get_issuer ()">gnutls_x509_crt_get_issuer</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
357 <em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> *dn</code></em>);
358 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-dn-get-rdn-ava" title="gnutls_x509_dn_get_rdn_ava ()">gnutls_x509_dn_get_rdn_ava</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> dn</code></em>,
359 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> irdn</code></em>,
360 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> iava</code></em>,
361 <em class="parameter"><code><span class="type">gnutls_x509_ava_st</span> *ava</code></em>);
362 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-dn-init" title="gnutls_x509_dn_init ()">gnutls_x509_dn_init</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> *dn</code></em>);
363 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-dn-import" title="gnutls_x509_dn_import ()">gnutls_x509_dn_import</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> dn</code></em>,
364 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>);
365 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-dn-export" title="gnutls_x509_dn_export ()">gnutls_x509_dn_export</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> dn</code></em>,
366 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
367 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
368 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);
369 <span class="returnvalue">void</span> <a class="link" href="gnutls-x509.html#gnutls-x509-dn-deinit" title="gnutls_x509_dn_deinit ()">gnutls_x509_dn_deinit</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> dn</code></em>);
370 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-init" title="gnutls_x509_crl_init ()">gnutls_x509_crl_init</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> *crl</code></em>);
371 <span class="returnvalue">void</span> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-deinit" title="gnutls_x509_crl_deinit ()">gnutls_x509_crl_deinit</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);
372 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-import" title="gnutls_x509_crl_import ()">gnutls_x509_crl_import</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
373 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
374 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>);
375 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-export" title="gnutls_x509_crl_export ()">gnutls_x509_crl_export</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
376 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
377 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
378 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);
379 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-raw-issuer-dn" title="gnutls_x509_crl_get_raw_issuer_dn ()">gnutls_x509_crl_get_raw_issuer_dn</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
380 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *dn</code></em>);
381 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-issuer-dn" title="gnutls_x509_crl_get_issuer_dn ()">gnutls_x509_crl_get_issuer_dn</a> (<em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
382 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
383 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
384 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-issuer-dn-by-oid" title="gnutls_x509_crl_get_issuer_dn_by_oid ()">gnutls_x509_crl_get_issuer_dn_by_oid</a>
385 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
386 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
387 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
388 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
389 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
390 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
391 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-dn-oid" title="gnutls_x509_crl_get_dn_oid ()">gnutls_x509_crl_get_dn_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
392 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
393 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
394 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);
395 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-signature-algorithm" title="gnutls_x509_crl_get_signature_algorithm ()">gnutls_x509_crl_get_signature_algorithm</a>
396 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);
397 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-signature" title="gnutls_x509_crl_get_signature ()">gnutls_x509_crl_get_signature</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
398 <em class="parameter"><code><span class="type">char</span> *sig</code></em>,
399 <em class="parameter"><code><span class="type">size_t</span> *sizeof_sig</code></em>);
400 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-version" title="gnutls_x509_crl_get_version ()">gnutls_x509_crl_get_version</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);
401 <span class="returnvalue">time_t</span> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-this-update" title="gnutls_x509_crl_get_this_update ()">gnutls_x509_crl_get_this_update</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);
402 <span class="returnvalue">time_t</span> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-next-update" title="gnutls_x509_crl_get_next_update ()">gnutls_x509_crl_get_next_update</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);
403 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-crt-count" title="gnutls_x509_crl_get_crt_count ()">gnutls_x509_crl_get_crt_count</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);
404 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-crt-serial" title="gnutls_x509_crl_get_crt_serial ()">gnutls_x509_crl_get_crt_serial</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
405 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
406 <em class="parameter"><code>unsigned <span class="type">char</span> *serial</code></em>,
407 <em class="parameter"><code><span class="type">size_t</span> *serial_size</code></em>,
408 <em class="parameter"><code><span class="type">time_t</span> *t</code></em>);
409 #define <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-certificate-count" title="gnutls_x509_crl_get_certificate_count">gnutls_x509_crl_get_certificate_count</a>
410 #define <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-certificate" title="gnutls_x509_crl_get_certificate">gnutls_x509_crl_get_certificate</a>
411 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-check-issuer" title="gnutls_x509_crl_check_issuer ()">gnutls_x509_crl_check_issuer</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
412 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> issuer</code></em>);
413 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-set-version" title="gnutls_x509_crl_set_version ()">gnutls_x509_crl_set_version</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
414 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> version</code></em>);
415 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-set-this-update" title="gnutls_x509_crl_set_this_update ()">gnutls_x509_crl_set_this_update</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
416 <em class="parameter"><code><span class="type">time_t</span> act_time</code></em>);
417 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-set-next-update" title="gnutls_x509_crl_set_next_update ()">gnutls_x509_crl_set_next_update</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
418 <em class="parameter"><code><span class="type">time_t</span> exp_time</code></em>);
419 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-set-crt-serial" title="gnutls_x509_crl_set_crt_serial ()">gnutls_x509_crl_set_crt_serial</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
420 <em class="parameter"><code>const <span class="type">void</span> *serial</code></em>,
421 <em class="parameter"><code><span class="type">size_t</span> serial_size</code></em>,
422 <em class="parameter"><code><span class="type">time_t</span> revocation_time</code></em>);
423 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-set-crt" title="gnutls_x509_crl_set_crt ()">gnutls_x509_crl_set_crt</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
424 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
425 <em class="parameter"><code><span class="type">time_t</span> revocation_time</code></em>);
426 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-authority-key-id" title="gnutls_x509_crl_get_authority_key_id ()">gnutls_x509_crl_get_authority_key_id</a>
427 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
428 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
429 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
430 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
431 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-number" title="gnutls_x509_crl_get_number ()">gnutls_x509_crl_get_number</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
432 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
433 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
434 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
435 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-extension-oid" title="gnutls_x509_crl_get_extension_oid ()">gnutls_x509_crl_get_extension_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
436 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
437 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
438 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);
439 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-extension-info" title="gnutls_x509_crl_get_extension_info ()">gnutls_x509_crl_get_extension_info</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
440 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
441 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
442 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>,
443 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
444 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-extension-data" title="gnutls_x509_crl_get_extension_data ()">gnutls_x509_crl_get_extension_data</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
445 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
446 <em class="parameter"><code><span class="type">void</span> *data</code></em>,
447 <em class="parameter"><code><span class="type">size_t</span> *sizeof_data</code></em>);
448 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-set-authority-key-id" title="gnutls_x509_crl_set_authority_key_id ()">gnutls_x509_crl_set_authority_key_id</a>
449 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
450 <em class="parameter"><code>const <span class="type">void</span> *id</code></em>,
451 <em class="parameter"><code><span class="type">size_t</span> id_size</code></em>);
452 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-set-number" title="gnutls_x509_crl_set_number ()">gnutls_x509_crl_set_number</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
453 <em class="parameter"><code>const <span class="type">void</span> *nr</code></em>,
454 <em class="parameter"><code><span class="type">size_t</span> nr_size</code></em>);
455 struct <a class="link" href="gnutls-x509.html#gnutls-pkcs7-int" title="struct gnutls_pkcs7_int">gnutls_pkcs7_int</a>;
456 typedef <a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t">gnutls_pkcs7_t</a>;
457 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-init" title="gnutls_pkcs7_init ()">gnutls_pkcs7_init</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> *pkcs7</code></em>);
458 <span class="returnvalue">void</span> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-deinit" title="gnutls_pkcs7_deinit ()">gnutls_pkcs7_deinit</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>);
459 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-import" title="gnutls_pkcs7_import ()">gnutls_pkcs7_import</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
460 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
461 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>);
462 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-export" title="gnutls_pkcs7_export ()">gnutls_pkcs7_export</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
463 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
464 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
465 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);
466 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-get-crt-count" title="gnutls_pkcs7_get_crt_count ()">gnutls_pkcs7_get_crt_count</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>);
467 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-get-crt-raw" title="gnutls_pkcs7_get_crt_raw ()">gnutls_pkcs7_get_crt_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
468 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
469 <em class="parameter"><code><span class="type">void</span> *certificate</code></em>,
470 <em class="parameter"><code><span class="type">size_t</span> *certificate_size</code></em>);
471 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-set-crt-raw" title="gnutls_pkcs7_set_crt_raw ()">gnutls_pkcs7_set_crt_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
472 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *crt</code></em>);
473 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-set-crt" title="gnutls_pkcs7_set_crt ()">gnutls_pkcs7_set_crt</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
474 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>);
475 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-delete-crt" title="gnutls_pkcs7_delete_crt ()">gnutls_pkcs7_delete_crt</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
476 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>);
477 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-get-crl-raw" title="gnutls_pkcs7_get_crl_raw ()">gnutls_pkcs7_get_crl_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
478 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
479 <em class="parameter"><code><span class="type">void</span> *crl</code></em>,
480 <em class="parameter"><code><span class="type">size_t</span> *crl_size</code></em>);
481 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-get-crl-count" title="gnutls_pkcs7_get_crl_count ()">gnutls_pkcs7_get_crl_count</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>);
482 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-set-crl-raw" title="gnutls_pkcs7_set_crl_raw ()">gnutls_pkcs7_set_crl_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
483 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *crl</code></em>);
484 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-set-crl" title="gnutls_pkcs7_set_crl ()">gnutls_pkcs7_set_crl</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
485 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);
486 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-pkcs7-delete-crl" title="gnutls_pkcs7_delete_crl ()">gnutls_pkcs7_delete_crl</a> (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
487 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>);
488 enum <a class="link" href="gnutls-x509.html#gnutls-certificate-verify-flags" title="enum gnutls_certificate_verify_flags">gnutls_certificate_verify_flags</a>;
489 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-check-issuer" title="gnutls_x509_crt_check_issuer ()">gnutls_x509_crt_check_issuer</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
490 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> issuer</code></em>);
491 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-list-verify" title="gnutls_x509_crt_list_verify ()">gnutls_x509_crt_list_verify</a> (<em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *cert_list</code></em>,
492 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> cert_list_length</code></em>,
493 <em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *CA_list</code></em>,
494 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> CA_list_length</code></em>,
495 <em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> *CRL_list</code></em>,
496 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> CRL_list_length</code></em>,
497 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
498 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *verify</code></em>);
499 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-verify" title="gnutls_x509_crt_verify ()">gnutls_x509_crt_verify</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
500 <em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *CA_list</code></em>,
501 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> CA_list_length</code></em>,
502 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
503 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *verify</code></em>);
504 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crl-verify" title="gnutls_x509_crl_verify ()">gnutls_x509_crl_verify</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
505 <em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *CA_list</code></em>,
506 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> CA_list_length</code></em>,
507 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
508 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *verify</code></em>);
509 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-check-revocation" title="gnutls_x509_crt_check_revocation ()">gnutls_x509_crt_check_revocation</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
510 <em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> *crl_list</code></em>,
511 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> crl_list_length</code></em>);
512 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-fingerprint" title="gnutls_x509_crt_get_fingerprint ()">gnutls_x509_crt_get_fingerprint</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
513 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-digest-algorithm-t" title="enum gnutls_digest_algorithm_t"><span class="type">gnutls_digest_algorithm_t</span></a> algo</code></em>,
514 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
515 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
516 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-key-purpose-oid" title="gnutls_x509_crt_get_key_purpose_oid ()">gnutls_x509_crt_get_key_purpose_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
517 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
518 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
519 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>,
520 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
521 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-key-purpose-oid" title="gnutls_x509_crt_set_key_purpose_oid ()">gnutls_x509_crt_set_key_purpose_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
522 <em class="parameter"><code>const <span class="type">void</span> *oid</code></em>,
523 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> critical</code></em>);
524 enum <a class="link" href="gnutls-x509.html#gnutls-pkcs-encrypt-flags-t" title="enum gnutls_pkcs_encrypt_flags_t">gnutls_pkcs_encrypt_flags_t</a>;
525 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-init" title="gnutls_x509_privkey_init ()">gnutls_x509_privkey_init</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> *key</code></em>);
526 <span class="returnvalue">void</span> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-deinit" title="gnutls_x509_privkey_deinit ()">gnutls_x509_privkey_deinit</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);
527 <a class="link" href="gnutls-gnutls.html#gnutls-sec-param-t" title="enum gnutls_sec_param_t"><span class="returnvalue">gnutls_sec_param_t</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-sec-param" title="gnutls_x509_privkey_sec_param ()">gnutls_x509_privkey_sec_param</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);
528 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-cpy" title="gnutls_x509_privkey_cpy ()">gnutls_x509_privkey_cpy</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> dst</code></em>,
529 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> src</code></em>);
530 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-import" title="gnutls_x509_privkey_import ()">gnutls_x509_privkey_import</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
531 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
532 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>);
533 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-import-pkcs8" title="gnutls_x509_privkey_import_pkcs8 ()">gnutls_x509_privkey_import_pkcs8</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
534 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
535 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
536 <em class="parameter"><code>const <span class="type">char</span> *password</code></em>,
537 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);
538 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-import-rsa-raw" title="gnutls_x509_privkey_import_rsa_raw ()">gnutls_x509_privkey_import_rsa_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
539 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *m</code></em>,
540 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *e</code></em>,
541 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *d</code></em>,
542 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *p</code></em>,
543 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *q</code></em>,
544 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *u</code></em>);
545 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-import-rsa-raw2" title="gnutls_x509_privkey_import_rsa_raw2 ()">gnutls_x509_privkey_import_rsa_raw2</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
546 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *m</code></em>,
547 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *e</code></em>,
548 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *d</code></em>,
549 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *p</code></em>,
550 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *q</code></em>,
551 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *u</code></em>,
552 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *e1</code></em>,
553 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *e2</code></em>);
554 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-fix" title="gnutls_x509_privkey_fix ()">gnutls_x509_privkey_fix</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);
555 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-export-dsa-raw" title="gnutls_x509_privkey_export_dsa_raw ()">gnutls_x509_privkey_export_dsa_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
556 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *p</code></em>,
557 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *q</code></em>,
558 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *g</code></em>,
559 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *y</code></em>,
560 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *x</code></em>);
561 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-import-dsa-raw" title="gnutls_x509_privkey_import_dsa_raw ()">gnutls_x509_privkey_import_dsa_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
562 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *p</code></em>,
563 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *q</code></em>,
564 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *g</code></em>,
565 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *y</code></em>,
566 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *x</code></em>);
567 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-get-pk-algorithm" title="gnutls_x509_privkey_get_pk_algorithm ()">gnutls_x509_privkey_get_pk_algorithm</a>
568 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);
569 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-get-key-id" title="gnutls_x509_privkey_get_key_id ()">gnutls_x509_privkey_get_key_id</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
570 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
571 <em class="parameter"><code>unsigned <span class="type">char</span> *output_data</code></em>,
572 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);
573 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-generate" title="gnutls_x509_privkey_generate ()">gnutls_x509_privkey_generate</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
574 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-pk-algorithm-t" title="enum gnutls_pk_algorithm_t"><span class="type">gnutls_pk_algorithm_t</span></a> algo</code></em>,
575 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> bits</code></em>,
576 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);
577 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-export" title="gnutls_x509_privkey_export ()">gnutls_x509_privkey_export</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
578 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
579 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
580 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);
581 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-export-pkcs8" title="gnutls_x509_privkey_export_pkcs8 ()">gnutls_x509_privkey_export_pkcs8</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
582 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
583 <em class="parameter"><code>const <span class="type">char</span> *password</code></em>,
584 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
585 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
586 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);
587 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-export-rsa-raw2" title="gnutls_x509_privkey_export_rsa_raw2 ()">gnutls_x509_privkey_export_rsa_raw2</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
588 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *m</code></em>,
589 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e</code></em>,
590 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *d</code></em>,
591 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *p</code></em>,
592 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *q</code></em>,
593 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *u</code></em>,
594 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e1</code></em>,
595 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e2</code></em>);
596 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-privkey-export-rsa-raw" title="gnutls_x509_privkey_export_rsa_raw ()">gnutls_x509_privkey_export_rsa_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
597 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *m</code></em>,
598 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e</code></em>,
599 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *d</code></em>,
600 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *p</code></em>,
601 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *q</code></em>,
602 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *u</code></em>);
603 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-print" title="gnutls_x509_crq_print ()">gnutls_x509_crq_print</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
604 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-certificate-print-formats-t" title="enum gnutls_certificate_print_formats_t"><span class="type">gnutls_certificate_print_formats_t</span></a> format</code></em>,
605 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *out</code></em>);
606 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-init" title="gnutls_x509_crq_init ()">gnutls_x509_crq_init</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> *crq</code></em>);
607 <span class="returnvalue">void</span> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-deinit" title="gnutls_x509_crq_deinit ()">gnutls_x509_crq_deinit</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>);
608 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-import" title="gnutls_x509_crq_import ()">gnutls_x509_crq_import</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
609 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
610 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>);
611 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-dn" title="gnutls_x509_crq_get_dn ()">gnutls_x509_crq_get_dn</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
612 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
613 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
614 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-dn-oid" title="gnutls_x509_crq_get_dn_oid ()">gnutls_x509_crq_get_dn_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
615 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
616 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
617 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);
618 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-dn-by-oid" title="gnutls_x509_crq_get_dn_by_oid ()">gnutls_x509_crq_get_dn_by_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
619 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
620 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
621 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
622 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
623 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
624 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-set-dn-by-oid" title="gnutls_x509_crq_set_dn_by_oid ()">gnutls_x509_crq_set_dn_by_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
625 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
626 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
627 <em class="parameter"><code>const <span class="type">void</span> *data</code></em>,
628 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> sizeof_data</code></em>);
629 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-set-version" title="gnutls_x509_crq_set_version ()">gnutls_x509_crq_set_version</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
630 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> version</code></em>);
631 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-version" title="gnutls_x509_crq_get_version ()">gnutls_x509_crq_get_version</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>);
632 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-set-key" title="gnutls_x509_crq_set_key ()">gnutls_x509_crq_set_key</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
633 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);
634 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-set-challenge-password" title="gnutls_x509_crq_set_challenge_password ()">gnutls_x509_crq_set_challenge_password</a>
635 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
636 <em class="parameter"><code>const <span class="type">char</span> *pass</code></em>);
637 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-challenge-password" title="gnutls_x509_crq_get_challenge_password ()">gnutls_x509_crq_get_challenge_password</a>
638 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
639 <em class="parameter"><code><span class="type">char</span> *pass</code></em>,
640 <em class="parameter"><code><span class="type">size_t</span> *sizeof_pass</code></em>);
641 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-set-attribute-by-oid" title="gnutls_x509_crq_set_attribute_by_oid ()">gnutls_x509_crq_set_attribute_by_oid</a>
642 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
643 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
644 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
645 <em class="parameter"><code><span class="type">size_t</span> sizeof_buf</code></em>);
646 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-attribute-by-oid" title="gnutls_x509_crq_get_attribute_by_oid ()">gnutls_x509_crq_get_attribute_by_oid</a>
647 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
648 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
649 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
650 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
651 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);
652 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-export" title="gnutls_x509_crq_export ()">gnutls_x509_crq_export</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
653 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
654 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
655 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);
656 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-crq" title="gnutls_x509_crt_set_crq ()">gnutls_x509_crt_set_crq</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
657 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>);
658 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-crq-extensions" title="gnutls_x509_crt_set_crq_extensions ()">gnutls_x509_crt_set_crq_extensions</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
659 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>);
660 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-set-key-rsa-raw" title="gnutls_x509_crq_set_key_rsa_raw ()">gnutls_x509_crq_set_key_rsa_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
661 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *m</code></em>,
662 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *e</code></em>);
663 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-set-subject-alt-name" title="gnutls_x509_crq_set_subject_alt_name ()">gnutls_x509_crq_set_subject_alt_name</a>
664 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
665 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> nt</code></em>,
666 <em class="parameter"><code>const <span class="type">void</span> *data</code></em>,
667 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> data_size</code></em>,
668 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);
669 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-set-key-usage" title="gnutls_x509_crq_set_key_usage ()">gnutls_x509_crq_set_key_usage</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
670 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> usage</code></em>);
671 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-set-basic-constraints" title="gnutls_x509_crq_set_basic_constraints ()">gnutls_x509_crq_set_basic_constraints</a>
672 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
673 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> ca</code></em>,
674 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> pathLenConstraint</code></em>);
675 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-set-key-purpose-oid" title="gnutls_x509_crq_set_key_purpose_oid ()">gnutls_x509_crq_set_key_purpose_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
676 <em class="parameter"><code>const <span class="type">void</span> *oid</code></em>,
677 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> critical</code></em>);
678 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-key-purpose-oid" title="gnutls_x509_crq_get_key_purpose_oid ()">gnutls_x509_crq_get_key_purpose_oid</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
679 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
680 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
681 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>,
682 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
683 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-extension-data" title="gnutls_x509_crq_get_extension_data ()">gnutls_x509_crq_get_extension_data</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
684 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
685 <em class="parameter"><code><span class="type">void</span> *data</code></em>,
686 <em class="parameter"><code><span class="type">size_t</span> *sizeof_data</code></em>);
687 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-extension-info" title="gnutls_x509_crq_get_extension_info ()">gnutls_x509_crq_get_extension_info</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
688 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
689 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
690 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>,
691 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
692 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-attribute-data" title="gnutls_x509_crq_get_attribute_data ()">gnutls_x509_crq_get_attribute_data</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
693 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
694 <em class="parameter"><code><span class="type">void</span> *data</code></em>,
695 <em class="parameter"><code><span class="type">size_t</span> *sizeof_data</code></em>);
696 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-attribute-info" title="gnutls_x509_crq_get_attribute_info ()">gnutls_x509_crq_get_attribute_info</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
697 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
698 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
699 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);
700 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-pk-algorithm" title="gnutls_x509_crq_get_pk_algorithm ()">gnutls_x509_crq_get_pk_algorithm</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
701 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *bits</code></em>);
702 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-key-id" title="gnutls_x509_crq_get_key_id ()">gnutls_x509_crq_get_key_id</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
703 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
704 <em class="parameter"><code>unsigned <span class="type">char</span> *output_data</code></em>,
705 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);
706 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-key-rsa-raw" title="gnutls_x509_crq_get_key_rsa_raw ()">gnutls_x509_crq_get_key_rsa_raw</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
707 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *m</code></em>,
708 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e</code></em>);
709 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-key-usage" title="gnutls_x509_crq_get_key_usage ()">gnutls_x509_crq_get_key_usage</a> (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
710 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *key_usage</code></em>,
711 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
712 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-basic-constraints" title="gnutls_x509_crq_get_basic_constraints ()">gnutls_x509_crq_get_basic_constraints</a>
713 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
714 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>,
715 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *ca</code></em>,
716 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *pathlen</code></em>);
717 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-subject-alt-name" title="gnutls_x509_crq_get_subject_alt_name ()">gnutls_x509_crq_get_subject_alt_name</a>
718 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
719 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
720 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
721 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
722 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *ret_type</code></em>,
723 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
724 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-subject-alt-othername-oid" title="gnutls_x509_crq_get_subject_alt_othername_oid ()">gnutls_x509_crq_get_subject_alt_othername_oid</a>
725 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
726 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
727 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
728 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>);
729 <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-extension-by-oid" title="gnutls_x509_crq_get_extension_by_oid ()">gnutls_x509_crq_get_extension_by_oid</a>
730 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
731 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
732 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
733 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
734 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>,
735 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);
738 <div class="refsect1">
739 <a name="gnutls-x509.description"></a><h2>Description</h2>
743 <div class="refsect1">
744 <a name="gnutls-x509.details"></a><h2>Details</h2>
745 <div class="refsect2">
746 <a name="GNUTLS-OID-X520-COUNTRY-NAME:CAPS"></a><h3>GNUTLS_OID_X520_COUNTRY_NAME</h3>
747 <pre class="programlisting">#define GNUTLS_OID_X520_COUNTRY_NAME "2.5.4.6"
753 <div class="refsect2">
754 <a name="GNUTLS-OID-X520-ORGANIZATION-NAME:CAPS"></a><h3>GNUTLS_OID_X520_ORGANIZATION_NAME</h3>
755 <pre class="programlisting">#define GNUTLS_OID_X520_ORGANIZATION_NAME "2.5.4.10"
761 <div class="refsect2">
762 <a name="GNUTLS-OID-X520-ORGANIZATIONAL-UNIT-NAME:CAPS"></a><h3>GNUTLS_OID_X520_ORGANIZATIONAL_UNIT_NAME</h3>
763 <pre class="programlisting">#define GNUTLS_OID_X520_ORGANIZATIONAL_UNIT_NAME "2.5.4.11"
769 <div class="refsect2">
770 <a name="GNUTLS-OID-X520-COMMON-NAME:CAPS"></a><h3>GNUTLS_OID_X520_COMMON_NAME</h3>
771 <pre class="programlisting">#define GNUTLS_OID_X520_COMMON_NAME "2.5.4.3"
777 <div class="refsect2">
778 <a name="GNUTLS-OID-X520-LOCALITY-NAME:CAPS"></a><h3>GNUTLS_OID_X520_LOCALITY_NAME</h3>
779 <pre class="programlisting">#define GNUTLS_OID_X520_LOCALITY_NAME "2.5.4.7"
785 <div class="refsect2">
786 <a name="GNUTLS-OID-X520-STATE-OR-PROVINCE-NAME:CAPS"></a><h3>GNUTLS_OID_X520_STATE_OR_PROVINCE_NAME</h3>
787 <pre class="programlisting">#define GNUTLS_OID_X520_STATE_OR_PROVINCE_NAME "2.5.4.8"
793 <div class="refsect2">
794 <a name="GNUTLS-OID-X520-INITIALS:CAPS"></a><h3>GNUTLS_OID_X520_INITIALS</h3>
795 <pre class="programlisting">#define GNUTLS_OID_X520_INITIALS "2.5.4.43"
801 <div class="refsect2">
802 <a name="GNUTLS-OID-X520-GENERATION-QUALIFIER:CAPS"></a><h3>GNUTLS_OID_X520_GENERATION_QUALIFIER</h3>
803 <pre class="programlisting">#define GNUTLS_OID_X520_GENERATION_QUALIFIER "2.5.4.44"
809 <div class="refsect2">
810 <a name="GNUTLS-OID-X520-SURNAME:CAPS"></a><h3>GNUTLS_OID_X520_SURNAME</h3>
811 <pre class="programlisting">#define GNUTLS_OID_X520_SURNAME "2.5.4.4"
817 <div class="refsect2">
818 <a name="GNUTLS-OID-X520-GIVEN-NAME:CAPS"></a><h3>GNUTLS_OID_X520_GIVEN_NAME</h3>
819 <pre class="programlisting">#define GNUTLS_OID_X520_GIVEN_NAME "2.5.4.42"
825 <div class="refsect2">
826 <a name="GNUTLS-OID-X520-TITLE:CAPS"></a><h3>GNUTLS_OID_X520_TITLE</h3>
827 <pre class="programlisting">#define GNUTLS_OID_X520_TITLE "2.5.4.12"
833 <div class="refsect2">
834 <a name="GNUTLS-OID-X520-DN-QUALIFIER:CAPS"></a><h3>GNUTLS_OID_X520_DN_QUALIFIER</h3>
835 <pre class="programlisting">#define GNUTLS_OID_X520_DN_QUALIFIER "2.5.4.46"
841 <div class="refsect2">
842 <a name="GNUTLS-OID-X520-PSEUDONYM:CAPS"></a><h3>GNUTLS_OID_X520_PSEUDONYM</h3>
843 <pre class="programlisting">#define GNUTLS_OID_X520_PSEUDONYM "2.5.4.65"
849 <div class="refsect2">
850 <a name="GNUTLS-OID-X520-POSTALCODE:CAPS"></a><h3>GNUTLS_OID_X520_POSTALCODE</h3>
851 <pre class="programlisting">#define GNUTLS_OID_X520_POSTALCODE "2.5.4.17"
857 <div class="refsect2">
858 <a name="GNUTLS-OID-X520-NAME:CAPS"></a><h3>GNUTLS_OID_X520_NAME</h3>
859 <pre class="programlisting">#define GNUTLS_OID_X520_NAME "2.5.4.41"
865 <div class="refsect2">
866 <a name="GNUTLS-OID-LDAP-DC:CAPS"></a><h3>GNUTLS_OID_LDAP_DC</h3>
867 <pre class="programlisting">#define GNUTLS_OID_LDAP_DC "0.9.2342.19200300.100.1.25"
873 <div class="refsect2">
874 <a name="GNUTLS-OID-LDAP-UID:CAPS"></a><h3>GNUTLS_OID_LDAP_UID</h3>
875 <pre class="programlisting">#define GNUTLS_OID_LDAP_UID "0.9.2342.19200300.100.1.1"
881 <div class="refsect2">
882 <a name="GNUTLS-OID-PKCS9-EMAIL:CAPS"></a><h3>GNUTLS_OID_PKCS9_EMAIL</h3>
883 <pre class="programlisting">#define GNUTLS_OID_PKCS9_EMAIL "1.2.840.113549.1.9.1"
889 <div class="refsect2">
890 <a name="GNUTLS-OID-PKIX-DATE-OF-BIRTH:CAPS"></a><h3>GNUTLS_OID_PKIX_DATE_OF_BIRTH</h3>
891 <pre class="programlisting">#define GNUTLS_OID_PKIX_DATE_OF_BIRTH "1.3.6.1.5.5.7.9.1"
897 <div class="refsect2">
898 <a name="GNUTLS-OID-PKIX-PLACE-OF-BIRTH:CAPS"></a><h3>GNUTLS_OID_PKIX_PLACE_OF_BIRTH</h3>
899 <pre class="programlisting">#define GNUTLS_OID_PKIX_PLACE_OF_BIRTH "1.3.6.1.5.5.7.9.2"
905 <div class="refsect2">
906 <a name="GNUTLS-OID-PKIX-GENDER:CAPS"></a><h3>GNUTLS_OID_PKIX_GENDER</h3>
907 <pre class="programlisting">#define GNUTLS_OID_PKIX_GENDER "1.3.6.1.5.5.7.9.3"
913 <div class="refsect2">
914 <a name="GNUTLS-OID-PKIX-COUNTRY-OF-CITIZENSHIP:CAPS"></a><h3>GNUTLS_OID_PKIX_COUNTRY_OF_CITIZENSHIP</h3>
915 <pre class="programlisting">#define GNUTLS_OID_PKIX_COUNTRY_OF_CITIZENSHIP "1.3.6.1.5.5.7.9.4"
921 <div class="refsect2">
922 <a name="GNUTLS-OID-PKIX-COUNTRY-OF-RESIDENCE:CAPS"></a><h3>GNUTLS_OID_PKIX_COUNTRY_OF_RESIDENCE</h3>
923 <pre class="programlisting">#define GNUTLS_OID_PKIX_COUNTRY_OF_RESIDENCE "1.3.6.1.5.5.7.9.5"
929 <div class="refsect2">
930 <a name="GNUTLS-KP-TLS-WWW-SERVER:CAPS"></a><h3>GNUTLS_KP_TLS_WWW_SERVER</h3>
931 <pre class="programlisting">#define GNUTLS_KP_TLS_WWW_SERVER "1.3.6.1.5.5.7.3.1"
937 <div class="refsect2">
938 <a name="GNUTLS-KP-TLS-WWW-CLIENT:CAPS"></a><h3>GNUTLS_KP_TLS_WWW_CLIENT</h3>
939 <pre class="programlisting">#define GNUTLS_KP_TLS_WWW_CLIENT "1.3.6.1.5.5.7.3.2"
945 <div class="refsect2">
946 <a name="GNUTLS-KP-CODE-SIGNING:CAPS"></a><h3>GNUTLS_KP_CODE_SIGNING</h3>
947 <pre class="programlisting">#define GNUTLS_KP_CODE_SIGNING "1.3.6.1.5.5.7.3.3"
953 <div class="refsect2">
954 <a name="GNUTLS-KP-EMAIL-PROTECTION:CAPS"></a><h3>GNUTLS_KP_EMAIL_PROTECTION</h3>
955 <pre class="programlisting">#define GNUTLS_KP_EMAIL_PROTECTION "1.3.6.1.5.5.7.3.4"
961 <div class="refsect2">
962 <a name="GNUTLS-KP-TIME-STAMPING:CAPS"></a><h3>GNUTLS_KP_TIME_STAMPING</h3>
963 <pre class="programlisting">#define GNUTLS_KP_TIME_STAMPING "1.3.6.1.5.5.7.3.8"
969 <div class="refsect2">
970 <a name="GNUTLS-KP-OCSP-SIGNING:CAPS"></a><h3>GNUTLS_KP_OCSP_SIGNING</h3>
971 <pre class="programlisting">#define GNUTLS_KP_OCSP_SIGNING "1.3.6.1.5.5.7.3.9"
977 <div class="refsect2">
978 <a name="GNUTLS-KP-IPSEC-IKE:CAPS"></a><h3>GNUTLS_KP_IPSEC_IKE</h3>
979 <pre class="programlisting">#define GNUTLS_KP_IPSEC_IKE "1.3.6.1.5.5.7.3.17"
985 <div class="refsect2">
986 <a name="GNUTLS-KP-ANY:CAPS"></a><h3>GNUTLS_KP_ANY</h3>
987 <pre class="programlisting">#define GNUTLS_KP_ANY "2.5.29.37.0"
993 <div class="refsect2">
994 <a name="GNUTLS-FSAN-SET:CAPS"></a><h3>GNUTLS_FSAN_SET</h3>
995 <pre class="programlisting">#define GNUTLS_FSAN_SET 0
1001 <div class="refsect2">
1002 <a name="GNUTLS-FSAN-APPEND:CAPS"></a><h3>GNUTLS_FSAN_APPEND</h3>
1003 <pre class="programlisting">#define GNUTLS_FSAN_APPEND 1
1009 <div class="refsect2">
1010 <a name="gnutls-certificate-import-flags"></a><h3>enum gnutls_certificate_import_flags</h3>
1011 <pre class="programlisting">typedef enum {
1012 GNUTLS_X509_CRT_LIST_IMPORT_FAIL_IF_EXCEED = 1,
1013 GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED = 2
1014 } gnutls_certificate_import_flags;
1017 Enumeration of different certificate import flags.
1019 <div class="variablelist"><table border="0">
1020 <col align="left" valign="top">
1023 <td><p><a name="GNUTLS-X509-CRT-LIST-IMPORT-FAIL-IF-EXCEED:CAPS"></a><span class="term"><code class="literal">GNUTLS_X509_CRT_LIST_IMPORT_FAIL_IF_EXCEED</code></span></p></td>
1025 certificates in the buffer are more than the space allocated for
1026 certificates. The error code will be <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a>.
1030 <td><p><a name="GNUTLS-X509-CRT-LIST-FAIL-IF-UNSORTED:CAPS"></a><span class="term"><code class="literal">GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED</code></span></p></td>
1031 <td>Fail if the certificates
1032 in the buffer are not ordered starting from subject to issuer.
1033 The error code will be <code class="literal">GNUTLS_E_CERTIFICATE_LIST_UNSORTED</code>.
1040 <div class="refsect2">
1041 <a name="gnutls-x509-crt-init"></a><h3>gnutls_x509_crt_init ()</h3>
1042 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_init (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *cert</code></em>);</pre>
1044 This function will initialize an X.509 certificate structure.
1046 <div class="variablelist"><table border="0">
1047 <col align="left" valign="top">
1050 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1051 <td>The structure to be initialized</td>
1054 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1055 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
1056 negative error value.</td>
1062 <div class="refsect2">
1063 <a name="gnutls-x509-crt-deinit"></a><h3>gnutls_x509_crt_deinit ()</h3>
1064 <pre class="programlisting"><span class="returnvalue">void</span> gnutls_x509_crt_deinit (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>);</pre>
1066 This function will deinitialize a certificate structure.
1068 <div class="variablelist"><table border="0">
1069 <col align="left" valign="top">
1071 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1072 <td>The structure to be deinitialized</td>
1077 <div class="refsect2">
1078 <a name="gnutls-x509-crt-import"></a><h3>gnutls_x509_crt_import ()</h3>
1079 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_import (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1080 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
1081 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>);</pre>
1083 This function will convert the given DER or PEM encoded Certificate
1084 to the native gnutls_x509_crt_t format. The output will be stored
1085 in <em class="parameter"><code>cert</code></em>.
1088 If the Certificate is PEM encoded it should have a header of "X509
1089 CERTIFICATE", or "CERTIFICATE".
1091 <div class="variablelist"><table border="0">
1092 <col align="left" valign="top">
1095 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1096 <td>The structure to store the parsed certificate.</td>
1099 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
1100 <td>The DER or PEM encoded certificate.</td>
1103 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
1104 <td>One of DER or PEM</td>
1107 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1108 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
1109 negative error value.</td>
1115 <div class="refsect2">
1116 <a name="gnutls-x509-crt-list-import"></a><h3>gnutls_x509_crt_list_import ()</h3>
1117 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_list_import (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *certs</code></em>,
1118 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *cert_max</code></em>,
1119 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
1120 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
1121 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);</pre>
1123 This function will convert the given PEM encoded certificate list
1124 to the native gnutls_x509_crt_t format. The output will be stored
1125 in <em class="parameter"><code>certs</code></em>. They will be automatically initialized.
1128 The flag <a class="link" href="gnutls-x509.html#GNUTLS-X509-CRT-LIST-IMPORT-FAIL-IF-EXCEED:CAPS"><code class="literal">GNUTLS_X509_CRT_LIST_IMPORT_FAIL_IF_EXCEED</code></a> will cause
1129 import to fail if the certificates in the provided buffer are more
1130 than the available structures. The <a class="link" href="gnutls-x509.html#GNUTLS-X509-CRT-LIST-FAIL-IF-UNSORTED:CAPS"><code class="literal">GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED</code></a>
1131 flag will cause the function to fail if the provided list is not
1132 sorted from subject to issuer.
1135 If the Certificate is PEM encoded it should have a header of "X509
1136 CERTIFICATE", or "CERTIFICATE".
1138 <div class="variablelist"><table border="0">
1139 <col align="left" valign="top">
1142 <td><p><span class="term"><em class="parameter"><code>certs</code></em> :</span></p></td>
1143 <td>The structures to store the parsed certificate. Must not be initialized.</td>
1146 <td><p><span class="term"><em class="parameter"><code>cert_max</code></em> :</span></p></td>
1147 <td>Initially must hold the maximum number of certs. It will be updated with the number of certs available.</td>
1150 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
1151 <td>The PEM encoded certificate.</td>
1154 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
1155 <td>One of DER or PEM.</td>
1158 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
1159 <td>must be zero or an OR'd sequence of gnutls_certificate_import_flags.</td>
1162 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1163 <td>the number of certificates read or a negative error value.</td>
1169 <div class="refsect2">
1170 <a name="gnutls-x509-crt-export"></a><h3>gnutls_x509_crt_export ()</h3>
1171 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_export (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1172 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
1173 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
1174 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);</pre>
1176 This function will export the certificate to DER or PEM format.
1179 If the buffer provided is not long enough to hold the output, then
1180 *output_data_size is updated and GNUTLS_E_SHORT_MEMORY_BUFFER will
1184 If the structure is PEM encoded, it will have a header
1185 of "BEGIN CERTIFICATE".
1187 <div class="variablelist"><table border="0">
1188 <col align="left" valign="top">
1191 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1192 <td>Holds the certificate</td>
1195 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
1196 <td>the format of output params. One of PEM or DER.</td>
1199 <td><p><span class="term"><em class="parameter"><code>output_data</code></em> :</span></p></td>
1200 <td>will contain a certificate PEM or DER encoded</td>
1203 <td><p><span class="term"><em class="parameter"><code>output_data_size</code></em> :</span></p></td>
1204 <td>holds the size of output_data (and will be
1205 replaced by the actual size of parameters)</td>
1208 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1209 <td>In case of failure a negative value will be
1210 returned, and 0 on success.</td>
1216 <div class="refsect2">
1217 <a name="gnutls-x509-crt-get-issuer-dn"></a><h3>gnutls_x509_crt_get_issuer_dn ()</h3>
1218 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_issuer_dn (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1219 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
1220 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
1222 This function will copy the name of the Certificate issuer in the
1223 provided buffer. The name will be in the form
1224 "C=xxxx,O=yyyy,CN=zzzz" as described in RFC2253. The output string
1225 will be ASCII or UTF-8 encoded, depending on the certificate data.
1228 If <em class="parameter"><code>buf</code></em> is null then only the size will be filled.
1230 <div class="variablelist"><table border="0">
1231 <col align="left" valign="top">
1234 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1235 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1238 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
1239 <td>a pointer to a structure to hold the name (may be null)</td>
1242 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
1243 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
1247 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1248 <td>GNUTLS_E_SHORT_MEMORY_BUFFER if the provided buffer is not
1249 long enough, and in that case the *sizeof_buf will be updated with
1250 the required size. On success 0 is returned.</td>
1256 <div class="refsect2">
1257 <a name="gnutls-x509-crt-get-issuer-dn-oid"></a><h3>gnutls_x509_crt_get_issuer_dn_oid ()</h3>
1258 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_issuer_dn_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1259 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
1260 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
1261 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);</pre>
1263 This function will extract the OIDs of the name of the Certificate
1264 issuer specified by the given index.
1267 If <em class="parameter"><code>oid</code></em> is null then only the size will be filled.
1269 <div class="variablelist"><table border="0">
1270 <col align="left" valign="top">
1273 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1274 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1277 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
1278 <td>This specifies which OID to return. Use zero to get the first one.</td>
1281 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
1282 <td>a pointer to a buffer to hold the OID (may be null)</td>
1285 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
1286 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
1290 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1291 <td>GNUTLS_E_SHORT_MEMORY_BUFFER if the provided buffer is not
1292 long enough, and in that case the *sizeof_oid will be updated
1293 with the required size. On success 0 is returned.</td>
1299 <div class="refsect2">
1300 <a name="gnutls-x509-crt-get-issuer-dn-by-oid"></a><h3>gnutls_x509_crt_get_issuer_dn_by_oid ()</h3>
1301 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_issuer_dn_by_oid
1302 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1303 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
1304 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
1305 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
1306 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
1307 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
1309 This function will extract the part of the name of the Certificate
1310 issuer specified by the given OID. The output, if the raw flag is not
1311 used, will be encoded as described in RFC2253. Thus a string that is
1312 ASCII or UTF-8 encoded, depending on the certificate data.
1315 Some helper macros with popular OIDs can be found in gnutls/x509.h
1316 If raw flag is zero, this function will only return known OIDs as
1317 text. Other OIDs will be DER encoded, as described in RFC2253 --
1318 in hex format with a '#' prefix. You can check about known OIDs
1319 using <a class="link" href="gnutls-x509.html#gnutls-x509-dn-oid-known" title="gnutls_x509_dn_oid_known ()"><code class="function">gnutls_x509_dn_oid_known()</code></a>.
1322 If <em class="parameter"><code>buf</code></em> is null then only the size will be filled.
1324 <div class="variablelist"><table border="0">
1325 <col align="left" valign="top">
1328 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1329 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1332 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
1333 <td>holds an Object Identified in null terminated string</td>
1336 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
1337 <td>In case multiple same OIDs exist in the RDN, this specifies which to send. Use zero to get the first one.</td>
1340 <td><p><span class="term"><em class="parameter"><code>raw_flag</code></em> :</span></p></td>
1341 <td>If non zero returns the raw DER data of the DN part.</td>
1344 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
1345 <td>a pointer to a structure to hold the name (may be null)</td>
1348 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
1349 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
1353 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1354 <td>GNUTLS_E_SHORT_MEMORY_BUFFER if the provided buffer is not
1355 long enough, and in that case the *sizeof_buf will be updated
1356 with the required size. On success 0 is returned.</td>
1362 <div class="refsect2">
1363 <a name="gnutls-x509-crt-get-dn"></a><h3>gnutls_x509_crt_get_dn ()</h3>
1364 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_dn (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1365 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
1366 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
1368 This function will copy the name of the Certificate in the provided
1369 buffer. The name will be in the form "C=xxxx,O=yyyy,CN=zzzz" as
1370 described in RFC2253. The output string will be ASCII or UTF-8
1371 encoded, depending on the certificate data.
1374 If <em class="parameter"><code>buf</code></em> is null then only the size will be filled.
1376 <div class="variablelist"><table border="0">
1377 <col align="left" valign="top">
1380 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1381 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1384 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
1385 <td>a pointer to a structure to hold the name (may be null)</td>
1388 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
1389 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
1393 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1395 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is not
1396 long enough, and in that case the *sizeof_buf will be updated
1397 with the required size. On success 0 is returned.</td>
1403 <div class="refsect2">
1404 <a name="gnutls-x509-crt-get-dn-oid"></a><h3>gnutls_x509_crt_get_dn_oid ()</h3>
1405 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_dn_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1406 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
1407 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
1408 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);</pre>
1410 This function will extract the OIDs of the name of the Certificate
1411 subject specified by the given index.
1414 If oid is null then only the size will be filled.
1416 <div class="variablelist"><table border="0">
1417 <col align="left" valign="top">
1420 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1421 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1424 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
1425 <td>This specifies which OID to return. Use zero to get the first one.</td>
1428 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
1429 <td>a pointer to a buffer to hold the OID (may be null)</td>
1432 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
1433 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
1437 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1439 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is
1440 not long enough, and in that case the *sizeof_oid will be updated
1441 with the required size. On success 0 is returned.</td>
1447 <div class="refsect2">
1448 <a name="gnutls-x509-crt-get-dn-by-oid"></a><h3>gnutls_x509_crt_get_dn_by_oid ()</h3>
1449 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_dn_by_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1450 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
1451 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
1452 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
1453 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
1454 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
1456 This function will extract the part of the name of the Certificate
1457 subject specified by the given OID. The output, if the raw flag is
1458 not used, will be encoded as described in RFC2253. Thus a string
1459 that is ASCII or UTF-8 encoded, depending on the certificate data.
1462 Some helper macros with popular OIDs can be found in gnutls/x509.h
1463 If raw flag is zero, this function will only return known OIDs as
1464 text. Other OIDs will be DER encoded, as described in RFC2253 --
1465 in hex format with a '#' prefix. You can check about known OIDs
1466 using <a class="link" href="gnutls-x509.html#gnutls-x509-dn-oid-known" title="gnutls_x509_dn_oid_known ()"><code class="function">gnutls_x509_dn_oid_known()</code></a>.
1469 If <em class="parameter"><code>buf</code></em> is null then only the size will be filled.
1471 <div class="variablelist"><table border="0">
1472 <col align="left" valign="top">
1475 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1476 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1479 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
1480 <td>holds an Object Identified in null terminated string</td>
1483 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
1484 <td>In case multiple same OIDs exist in the RDN, this specifies which to send. Use zero to get the first one.</td>
1487 <td><p><span class="term"><em class="parameter"><code>raw_flag</code></em> :</span></p></td>
1488 <td>If non zero returns the raw DER data of the DN part.</td>
1491 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
1492 <td>a pointer where the DN part will be copied (may be null).</td>
1495 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
1496 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
1500 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1502 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is
1503 not long enough, and in that case the *sizeof_buf will be updated
1504 with the required size. On success 0 is returned.</td>
1510 <div class="refsect2">
1511 <a name="gnutls-x509-crt-check-hostname"></a><h3>gnutls_x509_crt_check_hostname ()</h3>
1512 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_check_hostname (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1513 <em class="parameter"><code>const <span class="type">char</span> *hostname</code></em>);</pre>
1515 This function will check if the given certificate's subject matches
1516 the given hostname. This is a basic implementation of the matching
1517 described in RFC2818 (HTTPS), which takes into account wildcards,
1518 and the DNSName/IPAddress subject alternative name PKIX extension.
1520 <div class="variablelist"><table border="0">
1521 <col align="left" valign="top">
1524 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1525 <td>should contain an gnutls_x509_crt_t structure</td>
1528 <td><p><span class="term"><em class="parameter"><code>hostname</code></em> :</span></p></td>
1529 <td>A null terminated string that contains a DNS name</td>
1532 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1533 <td>non zero for a successful match, and zero on failure.</td>
1539 <div class="refsect2">
1540 <a name="gnutls-x509-crt-get-signature-algorithm"></a><h3>gnutls_x509_crt_get_signature_algorithm ()</h3>
1541 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_signature_algorithm
1542 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>);</pre>
1544 This function will return a value of the <a class="link" href="gnutls-gnutls.html#gnutls-sign-algorithm-t" title="enum gnutls_sign_algorithm_t"><span class="type">gnutls_sign_algorithm_t</span></a>
1545 enumeration that is the signature algorithm that has been used to
1546 sign this certificate.
1548 <div class="variablelist"><table border="0">
1549 <col align="left" valign="top">
1552 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1553 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1556 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1557 <td>a <a class="link" href="gnutls-gnutls.html#gnutls-sign-algorithm-t" title="enum gnutls_sign_algorithm_t"><span class="type">gnutls_sign_algorithm_t</span></a> value, or a negative value on
1564 <div class="refsect2">
1565 <a name="gnutls-x509-crt-get-signature"></a><h3>gnutls_x509_crt_get_signature ()</h3>
1566 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_signature (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1567 <em class="parameter"><code><span class="type">char</span> *sig</code></em>,
1568 <em class="parameter"><code><span class="type">size_t</span> *sizeof_sig</code></em>);</pre>
1570 This function will extract the signature field of a certificate.
1572 <div class="variablelist"><table border="0">
1573 <col align="left" valign="top">
1576 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1577 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1580 <td><p><span class="term"><em class="parameter"><code>sig</code></em> :</span></p></td>
1581 <td>a pointer where the signature part will be copied (may be null).</td>
1584 <td><p><span class="term"><em class="parameter"><code>sizeof_sig</code></em> :</span></p></td>
1585 <td>initially holds the size of <em class="parameter"><code>sig</code></em>
1589 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1590 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
1591 negative error value. and a negative value on error.</td>
1597 <div class="refsect2">
1598 <a name="gnutls-x509-crt-get-version"></a><h3>gnutls_x509_crt_get_version ()</h3>
1599 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_version (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>);</pre>
1601 This function will return the version of the specified Certificate.
1603 <div class="variablelist"><table border="0">
1604 <col align="left" valign="top">
1607 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1608 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1611 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1612 <td>version of certificate, or a negative value on error.</td>
1618 <div class="refsect2">
1619 <a name="gnutls-x509-crt-get-key-id"></a><h3>gnutls_x509_crt_get_key_id ()</h3>
1620 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_key_id (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
1621 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
1622 <em class="parameter"><code>unsigned <span class="type">char</span> *output_data</code></em>,
1623 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);</pre>
1625 This function will return a unique ID the depends on the public
1626 key parameters. This ID can be used in checking whether a
1627 certificate corresponds to the given private key.
1630 If the buffer provided is not long enough to hold the output, then
1631 *output_data_size is updated and GNUTLS_E_SHORT_MEMORY_BUFFER will
1632 be returned. The output will normally be a SHA-1 hash output,
1635 <div class="variablelist"><table border="0">
1636 <col align="left" valign="top">
1639 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
1640 <td>Holds the certificate</td>
1643 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
1644 <td>should be 0 for now</td>
1647 <td><p><span class="term"><em class="parameter"><code>output_data</code></em> :</span></p></td>
1648 <td>will contain the key ID</td>
1651 <td><p><span class="term"><em class="parameter"><code>output_data_size</code></em> :</span></p></td>
1652 <td>holds the size of output_data (and will be
1653 replaced by the actual size of parameters)</td>
1656 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1657 <td>In case of failure a negative value will be
1658 returned, and 0 on success.</td>
1664 <div class="refsect2">
1665 <a name="gnutls-x509-crt-set-authority-key-id"></a><h3>gnutls_x509_crt_set_authority_key_id ()</h3>
1666 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_authority_key_id
1667 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1668 <em class="parameter"><code>const <span class="type">void</span> *id</code></em>,
1669 <em class="parameter"><code><span class="type">size_t</span> id_size</code></em>);</pre>
1671 This function will set the X.509 certificate's authority key ID extension.
1672 Only the keyIdentifier field can be set with this function.
1674 <div class="variablelist"><table border="0">
1675 <col align="left" valign="top">
1678 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1679 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
1683 <td><p><span class="term"><em class="parameter"><code>id</code></em> :</span></p></td>
1687 <td><p><span class="term"><em class="parameter"><code>id_size</code></em> :</span></p></td>
1688 <td>Holds the size of the serial field.</td>
1691 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1692 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
1693 negative error value.</td>
1699 <div class="refsect2">
1700 <a name="gnutls-x509-crt-get-authority-key-id"></a><h3>gnutls_x509_crt_get_authority_key_id ()</h3>
1701 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_authority_key_id
1702 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1703 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
1704 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
1705 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
1707 This function will return the X.509v3 certificate authority's key
1708 identifier. This is obtained by the X.509 Authority Key
1709 identifier extension field (2.5.29.35). Note that this function
1710 only returns the keyIdentifier field of the extension.
1712 <div class="variablelist"><table border="0">
1713 <col align="left" valign="top">
1716 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1717 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1720 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
1721 <td>The place where the identifier will be copied</td>
1724 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
1725 <td>Holds the size of the result field.</td>
1728 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
1729 <td>will be non zero if the extension is marked as critical (may be null)</td>
1732 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1733 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
1734 negative error value.</td>
1740 <div class="refsect2">
1741 <a name="gnutls-x509-crt-get-subject-key-id"></a><h3>gnutls_x509_crt_get_subject_key_id ()</h3>
1742 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_subject_key_id (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1743 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
1744 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
1745 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
1747 This function will return the X.509v3 certificate's subject key
1748 identifier. This is obtained by the X.509 Subject Key identifier
1749 extension field (2.5.29.14).
1751 <div class="variablelist"><table border="0">
1752 <col align="left" valign="top">
1755 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1756 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1759 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
1760 <td>The place where the identifier will be copied</td>
1763 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
1764 <td>Holds the size of the result field.</td>
1767 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
1768 <td>will be non zero if the extension is marked as critical (may be null)</td>
1771 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1772 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
1773 negative error value.</td>
1779 <div class="refsect2">
1780 <a name="gnutls-x509-crt-get-subject-unique-id"></a><h3>gnutls_x509_crt_get_subject_unique_id ()</h3>
1781 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_subject_unique_id
1782 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
1783 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
1784 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
1786 This function will extract the subjectUniqueID value (if present) for
1787 the given certificate.
1790 If the user allocated memory buffer is not large enough to hold the
1791 full subjectUniqueID, then a GNUTLS_E_SHORT_MEMORY_BUFFER error will be
1792 returned, and sizeof_buf will be set to the actual length.
1794 <div class="variablelist"><table border="0">
1795 <col align="left" valign="top">
1798 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
1799 <td>Holds the certificate</td>
1802 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
1803 <td>user allocated memory buffer, will hold the unique id</td>
1806 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
1807 <td>size of user allocated memory buffer (on input), will hold
1808 actual size of the unique ID on return.</td>
1811 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1813 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> on success, otherwise an error.</td>
1819 <div class="refsect2">
1820 <a name="gnutls-x509-crt-get-issuer-unique-id"></a><h3>gnutls_x509_crt_get_issuer_unique_id ()</h3>
1821 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_issuer_unique_id
1822 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
1823 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
1824 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
1826 This function will extract the issuerUniqueID value (if present) for
1827 the given certificate.
1830 If the user allocated memory buffer is not large enough to hold the
1831 full subjectUniqueID, then a GNUTLS_E_SHORT_MEMORY_BUFFER error will be
1832 returned, and sizeof_buf will be set to the actual length.
1834 <div class="variablelist"><table border="0">
1835 <col align="left" valign="top">
1838 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
1839 <td>Holds the certificate</td>
1842 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
1843 <td>user allocated memory buffer, will hold the unique id</td>
1846 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
1847 <td>size of user allocated memory buffer (on input), will hold
1848 actual size of the unique ID on return.</td>
1851 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1853 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> on success, otherwise an error.</td>
1859 <div class="refsect2">
1860 <a name="GNUTLS-CRL-REASON-UNUSED:CAPS"></a><h3>GNUTLS_CRL_REASON_UNUSED</h3>
1861 <pre class="programlisting">#define GNUTLS_CRL_REASON_UNUSED 128
1867 <div class="refsect2">
1868 <a name="GNUTLS-CRL-REASON-KEY-COMPROMISE:CAPS"></a><h3>GNUTLS_CRL_REASON_KEY_COMPROMISE</h3>
1869 <pre class="programlisting">#define GNUTLS_CRL_REASON_KEY_COMPROMISE 64
1875 <div class="refsect2">
1876 <a name="GNUTLS-CRL-REASON-CA-COMPROMISE:CAPS"></a><h3>GNUTLS_CRL_REASON_CA_COMPROMISE</h3>
1877 <pre class="programlisting">#define GNUTLS_CRL_REASON_CA_COMPROMISE 32
1883 <div class="refsect2">
1884 <a name="GNUTLS-CRL-REASON-AFFILIATION-CHANGED:CAPS"></a><h3>GNUTLS_CRL_REASON_AFFILIATION_CHANGED</h3>
1885 <pre class="programlisting">#define GNUTLS_CRL_REASON_AFFILIATION_CHANGED 16
1891 <div class="refsect2">
1892 <a name="GNUTLS-CRL-REASON-SUPERSEDED:CAPS"></a><h3>GNUTLS_CRL_REASON_SUPERSEDED</h3>
1893 <pre class="programlisting">#define GNUTLS_CRL_REASON_SUPERSEDED 8
1899 <div class="refsect2">
1900 <a name="GNUTLS-CRL-REASON-SUPERSEEDED:CAPS"></a><h3>GNUTLS_CRL_REASON_SUPERSEEDED</h3>
1901 <pre class="programlisting">#define GNUTLS_CRL_REASON_SUPERSEEDED GNUTLS_CRL_REASON_SUPERSEDED
1907 <div class="refsect2">
1908 <a name="GNUTLS-CRL-REASON-CESSATION-OF-OPERATION:CAPS"></a><h3>GNUTLS_CRL_REASON_CESSATION_OF_OPERATION</h3>
1909 <pre class="programlisting">#define GNUTLS_CRL_REASON_CESSATION_OF_OPERATION 4
1915 <div class="refsect2">
1916 <a name="GNUTLS-CRL-REASON-CERTIFICATE-HOLD:CAPS"></a><h3>GNUTLS_CRL_REASON_CERTIFICATE_HOLD</h3>
1917 <pre class="programlisting">#define GNUTLS_CRL_REASON_CERTIFICATE_HOLD 2
1923 <div class="refsect2">
1924 <a name="GNUTLS-CRL-REASON-PRIVILEGE-WITHDRAWN:CAPS"></a><h3>GNUTLS_CRL_REASON_PRIVILEGE_WITHDRAWN</h3>
1925 <pre class="programlisting">#define GNUTLS_CRL_REASON_PRIVILEGE_WITHDRAWN 1
1931 <div class="refsect2">
1932 <a name="GNUTLS-CRL-REASON-AA-COMPROMISE:CAPS"></a><h3>GNUTLS_CRL_REASON_AA_COMPROMISE</h3>
1933 <pre class="programlisting">#define GNUTLS_CRL_REASON_AA_COMPROMISE 32768
1939 <div class="refsect2">
1940 <a name="gnutls-x509-crt-get-crl-dist-points"></a><h3>gnutls_x509_crt_get_crl_dist_points ()</h3>
1941 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_crl_dist_points (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
1942 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
1943 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
1944 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
1945 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *reason_flags</code></em>,
1946 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
1948 This function retrieves the CRL distribution points (2.5.29.31),
1949 contained in the given certificate in the X509v3 Certificate
1953 <em class="parameter"><code>reason_flags</code></em> should be an ORed sequence of
1954 <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-UNUSED:CAPS" title="GNUTLS_CRL_REASON_UNUSED"><code class="literal">GNUTLS_CRL_REASON_UNUSED</code></a>, <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-KEY-COMPROMISE:CAPS" title="GNUTLS_CRL_REASON_KEY_COMPROMISE"><code class="literal">GNUTLS_CRL_REASON_KEY_COMPROMISE</code></a>,
1955 <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-CA-COMPROMISE:CAPS" title="GNUTLS_CRL_REASON_CA_COMPROMISE"><code class="literal">GNUTLS_CRL_REASON_CA_COMPROMISE</code></a>,
1956 <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-AFFILIATION-CHANGED:CAPS" title="GNUTLS_CRL_REASON_AFFILIATION_CHANGED"><code class="literal">GNUTLS_CRL_REASON_AFFILIATION_CHANGED</code></a>,
1957 <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-SUPERSEEDED:CAPS" title="GNUTLS_CRL_REASON_SUPERSEEDED"><code class="literal">GNUTLS_CRL_REASON_SUPERSEEDED</code></a>,
1958 <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-CESSATION-OF-OPERATION:CAPS" title="GNUTLS_CRL_REASON_CESSATION_OF_OPERATION"><code class="literal">GNUTLS_CRL_REASON_CESSATION_OF_OPERATION</code></a>,
1959 <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-CERTIFICATE-HOLD:CAPS" title="GNUTLS_CRL_REASON_CERTIFICATE_HOLD"><code class="literal">GNUTLS_CRL_REASON_CERTIFICATE_HOLD</code></a>,
1960 <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-PRIVILEGE-WITHDRAWN:CAPS" title="GNUTLS_CRL_REASON_PRIVILEGE_WITHDRAWN"><code class="literal">GNUTLS_CRL_REASON_PRIVILEGE_WITHDRAWN</code></a>,
1961 <a class="link" href="gnutls-x509.html#GNUTLS-CRL-REASON-AA-COMPROMISE:CAPS" title="GNUTLS_CRL_REASON_AA_COMPROMISE"><code class="literal">GNUTLS_CRL_REASON_AA_COMPROMISE</code></a>, or zero for all possible reasons.
1963 <div class="variablelist"><table border="0">
1964 <col align="left" valign="top">
1967 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
1968 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
1971 <td><p><span class="term"><em class="parameter"><code>seq</code></em> :</span></p></td>
1972 <td>specifies the sequence number of the distribution point (0 for the first one, 1 for the second etc.)</td>
1975 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
1976 <td>is the place where the distribution point will be copied to</td>
1979 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
1980 <td>holds the size of ret.</td>
1983 <td><p><span class="term"><em class="parameter"><code>reason_flags</code></em> :</span></p></td>
1984 <td>Revocation reasons flags.</td>
1987 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
1988 <td>will be non zero if the extension is marked as critical (may be null)</td>
1991 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
1993 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> and updates &<em class="parameter"><code>ret_size</code></em> if
1994 &<em class="parameter"><code>ret_size</code></em> is not enough to hold the distribution point, or the
1995 type of the distribution point if everything was ok. The type is
1996 one of the enumerated <a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><code class="literal">gnutls_x509_subject_alt_name_t</code></a>. If the
1997 certificate does not have an Alternative name with the specified
1998 sequence number then <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> is
2005 <div class="refsect2">
2006 <a name="gnutls-x509-crt-set-crl-dist-points2"></a><h3>gnutls_x509_crt_set_crl_dist_points2 ()</h3>
2007 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_crl_dist_points2
2008 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
2009 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> type</code></em>,
2010 <em class="parameter"><code>const <span class="type">void</span> *data</code></em>,
2011 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> data_size</code></em>,
2012 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> reason_flags</code></em>);</pre>
2014 This function will set the CRL distribution points certificate extension.
2016 <div class="variablelist"><table border="0">
2017 <col align="left" valign="top">
2020 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
2021 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
2025 <td><p><span class="term"><em class="parameter"><code>type</code></em> :</span></p></td>
2026 <td>is one of the gnutls_x509_subject_alt_name_t enumerations</td>
2029 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
2030 <td>The data to be set</td>
2033 <td><p><span class="term"><em class="parameter"><code>data_size</code></em> :</span></p></td>
2034 <td>The data size</td>
2037 <td><p><span class="term"><em class="parameter"><code>reason_flags</code></em> :</span></p></td>
2038 <td>revocation reasons</td>
2041 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2042 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
2043 negative error value.</td>
2047 <p class="since">Since 2.6.0</p>
2050 <div class="refsect2">
2051 <a name="gnutls-x509-crt-set-crl-dist-points"></a><h3>gnutls_x509_crt_set_crl_dist_points ()</h3>
2052 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_crl_dist_points (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
2053 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> type</code></em>,
2054 <em class="parameter"><code>const <span class="type">void</span> *data_string</code></em>,
2055 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> reason_flags</code></em>);</pre>
2057 This function will set the CRL distribution points certificate extension.
2059 <div class="variablelist"><table border="0">
2060 <col align="left" valign="top">
2063 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
2064 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
2068 <td><p><span class="term"><em class="parameter"><code>type</code></em> :</span></p></td>
2069 <td>is one of the gnutls_x509_subject_alt_name_t enumerations</td>
2072 <td><p><span class="term"><em class="parameter"><code>data_string</code></em> :</span></p></td>
2073 <td>The data to be set</td>
2076 <td><p><span class="term"><em class="parameter"><code>reason_flags</code></em> :</span></p></td>
2077 <td>revocation reasons</td>
2080 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2081 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
2082 negative error value.</td>
2088 <div class="refsect2">
2089 <a name="gnutls-x509-crt-cpy-crl-dist-points"></a><h3>gnutls_x509_crt_cpy_crl_dist_points ()</h3>
2090 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_cpy_crl_dist_points (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> dst</code></em>,
2091 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> src</code></em>);</pre>
2093 This function will copy the CRL distribution points certificate
2094 extension, from the source to the destination certificate.
2095 This may be useful to copy from a CA certificate to issued ones.
2097 <div class="variablelist"><table border="0">
2098 <col align="left" valign="top">
2101 <td><p><span class="term"><em class="parameter"><code>dst</code></em> :</span></p></td>
2102 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
2106 <td><p><span class="term"><em class="parameter"><code>src</code></em> :</span></p></td>
2107 <td>the certificate where the dist points will be copied from</td>
2110 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2111 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
2112 negative error value.</td>
2118 <div class="refsect2">
2119 <a name="gnutls-x509-crt-get-activation-time"></a><h3>gnutls_x509_crt_get_activation_time ()</h3>
2120 <pre class="programlisting"><span class="returnvalue">time_t</span> gnutls_x509_crt_get_activation_time (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>);</pre>
2122 This function will return the time this Certificate was or will be
2125 <div class="variablelist"><table border="0">
2126 <col align="left" valign="top">
2129 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2130 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2133 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2134 <td>activation time, or (time_t)-1 on error.</td>
2140 <div class="refsect2">
2141 <a name="gnutls-x509-crt-get-expiration-time"></a><h3>gnutls_x509_crt_get_expiration_time ()</h3>
2142 <pre class="programlisting"><span class="returnvalue">time_t</span> gnutls_x509_crt_get_expiration_time (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>);</pre>
2144 This function will return the time this Certificate was or will be
2147 <div class="variablelist"><table border="0">
2148 <col align="left" valign="top">
2151 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2152 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2155 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2156 <td>expiration time, or (time_t)-1 on error.</td>
2162 <div class="refsect2">
2163 <a name="gnutls-x509-crt-get-serial"></a><h3>gnutls_x509_crt_get_serial ()</h3>
2164 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_serial (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2165 <em class="parameter"><code><span class="type">void</span> *result</code></em>,
2166 <em class="parameter"><code><span class="type">size_t</span> *result_size</code></em>);</pre>
2168 This function will return the X.509 certificate's serial number.
2169 This is obtained by the X509 Certificate serialNumber field. Serial
2170 is not always a 32 or 64bit number. Some CAs use large serial
2171 numbers, thus it may be wise to handle it as something opaque.
2173 <div class="variablelist"><table border="0">
2174 <col align="left" valign="top">
2177 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2178 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2181 <td><p><span class="term"><em class="parameter"><code>result</code></em> :</span></p></td>
2182 <td>The place where the serial number will be copied</td>
2185 <td><p><span class="term"><em class="parameter"><code>result_size</code></em> :</span></p></td>
2186 <td>Holds the size of the result field.</td>
2189 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2190 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
2191 negative error value.</td>
2197 <div class="refsect2">
2198 <a name="gnutls-x509-crt-get-pk-algorithm"></a><h3>gnutls_x509_crt_get_pk_algorithm ()</h3>
2199 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_pk_algorithm (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2200 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *bits</code></em>);</pre>
2202 This function will return the public key algorithm of an X.509
2206 If bits is non null, it should have enough size to hold the parameters
2207 size in bits. For RSA the bits returned is the modulus.
2208 For DSA the bits returned are of the public
2211 <div class="variablelist"><table border="0">
2212 <col align="left" valign="top">
2215 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2216 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2219 <td><p><span class="term"><em class="parameter"><code>bits</code></em> :</span></p></td>
2220 <td>if bits is non null it will hold the size of the parameters' in bits</td>
2223 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2224 <td>a member of the <a class="link" href="gnutls-gnutls.html#gnutls-pk-algorithm-t" title="enum gnutls_pk_algorithm_t"><span class="type">gnutls_pk_algorithm_t</span></a> enumeration on
2225 success, or a negative value on error.</td>
2231 <div class="refsect2">
2232 <a name="gnutls-x509-crt-get-pk-rsa-raw"></a><h3>gnutls_x509_crt_get_pk_rsa_raw ()</h3>
2233 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_pk_rsa_raw (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
2234 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *m</code></em>,
2235 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e</code></em>);</pre>
2237 This function will export the RSA public key's parameters found in
2238 the given structure. The new parameters will be allocated using
2239 <a class="link" href="gnutls-gnutls.html#gnutls-malloc" title="gnutls_malloc"><code class="function">gnutls_malloc()</code></a> and will be stored in the appropriate datum.
2241 <div class="variablelist"><table border="0">
2242 <col align="left" valign="top">
2245 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
2246 <td>Holds the certificate</td>
2249 <td><p><span class="term"><em class="parameter"><code>m</code></em> :</span></p></td>
2250 <td>will hold the modulus</td>
2253 <td><p><span class="term"><em class="parameter"><code>e</code></em> :</span></p></td>
2254 <td>will hold the public exponent</td>
2257 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2259 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> on success, otherwise an error.</td>
2265 <div class="refsect2">
2266 <a name="gnutls-x509-crt-get-pk-dsa-raw"></a><h3>gnutls_x509_crt_get_pk_dsa_raw ()</h3>
2267 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_pk_dsa_raw (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
2268 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *p</code></em>,
2269 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *q</code></em>,
2270 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *g</code></em>,
2271 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *y</code></em>);</pre>
2273 This function will export the DSA public key's parameters found in
2274 the given certificate. The new parameters will be allocated using
2275 <a class="link" href="gnutls-gnutls.html#gnutls-malloc" title="gnutls_malloc"><code class="function">gnutls_malloc()</code></a> and will be stored in the appropriate datum.
2277 <div class="variablelist"><table border="0">
2278 <col align="left" valign="top">
2281 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
2282 <td>Holds the certificate</td>
2285 <td><p><span class="term"><em class="parameter"><code>p</code></em> :</span></p></td>
2286 <td>will hold the p</td>
2289 <td><p><span class="term"><em class="parameter"><code>q</code></em> :</span></p></td>
2290 <td>will hold the q</td>
2293 <td><p><span class="term"><em class="parameter"><code>g</code></em> :</span></p></td>
2294 <td>will hold the g</td>
2297 <td><p><span class="term"><em class="parameter"><code>y</code></em> :</span></p></td>
2298 <td>will hold the y</td>
2301 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2303 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> on success, otherwise an error.</td>
2309 <div class="refsect2">
2310 <a name="gnutls-x509-crt-get-subject-alt-name"></a><h3>gnutls_x509_crt_get_subject_alt_name ()</h3>
2311 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_subject_alt_name
2312 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2313 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
2314 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
2315 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
2316 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
2318 This function retrieves the Alternative Name (2.5.29.17), contained
2319 in the given certificate in the X509v3 Certificate Extensions.
2322 When the SAN type is otherName, it will extract the data in the
2323 otherName's value field, and <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME</code></a> is returned.
2324 You may use <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject-alt-othername-oid" title="gnutls_x509_crt_get_subject_alt_othername_oid ()"><code class="function">gnutls_x509_crt_get_subject_alt_othername_oid()</code></a> to get
2325 the corresponding OID and the "virtual" SAN types (e.g.,
2326 <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME-XMPP:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME_XMPP</code></a>).
2329 If an otherName OID is known, the data will be decoded. Otherwise
2330 the returned data will be DER encoded, and you will have to decode
2331 it yourself. Currently, only the RFC 3920 id-on-xmppAddr SAN is
2334 <div class="variablelist"><table border="0">
2335 <col align="left" valign="top">
2338 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2339 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2342 <td><p><span class="term"><em class="parameter"><code>seq</code></em> :</span></p></td>
2343 <td>specifies the sequence number of the alt name (0 for the first one, 1 for the second etc.)</td>
2346 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
2347 <td>is the place where the alternative name will be copied to</td>
2350 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
2351 <td>holds the size of ret.</td>
2354 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
2355 <td>will be non zero if the extension is marked as critical (may be null)</td>
2358 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2359 <td>the alternative subject name type on success, one of the
2360 enumerated <a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a>. It will return
2361 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if <em class="parameter"><code>ret_size</code></em> is not large enough to
2362 hold the value. In that case <em class="parameter"><code>ret_size</code></em> will be updated with the
2363 required size. If the certificate does not have an Alternative
2364 name with the specified sequence number then
2365 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> is returned.</td>
2371 <div class="refsect2">
2372 <a name="gnutls-x509-crt-get-subject-alt-name2"></a><h3>gnutls_x509_crt_get_subject_alt_name2 ()</h3>
2373 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_subject_alt_name2
2374 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2375 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
2376 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
2377 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
2378 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *ret_type</code></em>,
2379 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
2381 This function will return the alternative names, contained in the
2382 given certificate. It is the same as
2383 <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject-alt-name" title="gnutls_x509_crt_get_subject_alt_name ()"><code class="function">gnutls_x509_crt_get_subject_alt_name()</code></a> except for the fact that it
2384 will return the type of the alternative name in <em class="parameter"><code>ret_type</code></em> even if
2385 the function fails for some reason (i.e. the buffer provided is
2388 <div class="variablelist"><table border="0">
2389 <col align="left" valign="top">
2392 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2393 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2396 <td><p><span class="term"><em class="parameter"><code>seq</code></em> :</span></p></td>
2397 <td>specifies the sequence number of the alt name (0 for the first one, 1 for the second etc.)</td>
2400 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
2401 <td>is the place where the alternative name will be copied to</td>
2404 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
2405 <td>holds the size of ret.</td>
2408 <td><p><span class="term"><em class="parameter"><code>ret_type</code></em> :</span></p></td>
2409 <td>holds the type of the alternative name (one of gnutls_x509_subject_alt_name_t).</td>
2412 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
2413 <td>will be non zero if the extension is marked as critical (may be null)</td>
2416 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2417 <td>the alternative subject name type on success, one of the
2418 enumerated <a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a>. It will return
2419 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if <em class="parameter"><code>ret_size</code></em> is not large enough
2420 to hold the value. In that case <em class="parameter"><code>ret_size</code></em> will be updated with
2421 the required size. If the certificate does not have an
2422 Alternative name with the specified sequence number then
2423 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> is returned.</td>
2429 <div class="refsect2">
2430 <a name="gnutls-x509-crt-get-subject-alt-othername-oid"></a><h3>gnutls_x509_crt_get_subject_alt_othername_oid ()</h3>
2431 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_subject_alt_othername_oid
2432 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2433 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
2434 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
2435 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>);</pre>
2437 This function will extract the type OID of an otherName Subject
2438 Alternative Name, contained in the given certificate, and return
2439 the type as an enumerated element.
2442 This function is only useful if
2443 <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject-alt-name" title="gnutls_x509_crt_get_subject_alt_name ()"><code class="function">gnutls_x509_crt_get_subject_alt_name()</code></a> returned
2444 <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME</code></a>.
2446 <div class="variablelist"><table border="0">
2447 <col align="left" valign="top">
2450 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2451 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2454 <td><p><span class="term"><em class="parameter"><code>seq</code></em> :</span></p></td>
2455 <td>specifies the sequence number of the alt name (0 for the first one, 1 for the second etc.)</td>
2458 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
2459 <td>is the place where the otherName OID will be copied to</td>
2462 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
2463 <td>holds the size of ret.</td>
2466 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2467 <td>the alternative subject name type on success, one of the
2468 enumerated gnutls_x509_subject_alt_name_t. For supported OIDs, it
2469 will return one of the virtual (GNUTLS_SAN_OTHERNAME_*) types,
2470 e.g. <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME-XMPP:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME_XMPP</code></a>, and <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME</code></a> for
2471 unknown OIDs. It will return <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if
2472 <em class="parameter"><code>ret_size</code></em> is not large enough to hold the value. In that case
2473 <em class="parameter"><code>ret_size</code></em> will be updated with the required size. If the
2474 certificate does not have an Alternative name with the specified
2475 sequence number and with the otherName type then
2476 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> is returned.</td>
2482 <div class="refsect2">
2483 <a name="gnutls-x509-crt-get-issuer-alt-name"></a><h3>gnutls_x509_crt_get_issuer_alt_name ()</h3>
2484 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_issuer_alt_name (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2485 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
2486 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
2487 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
2488 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
2490 This function retrieves the Issuer Alternative Name (2.5.29.18),
2491 contained in the given certificate in the X509v3 Certificate
2495 When the SAN type is otherName, it will extract the data in the
2496 otherName's value field, and <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME</code></a> is returned.
2497 You may use <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject-alt-othername-oid" title="gnutls_x509_crt_get_subject_alt_othername_oid ()"><code class="function">gnutls_x509_crt_get_subject_alt_othername_oid()</code></a> to get
2498 the corresponding OID and the "virtual" SAN types (e.g.,
2499 <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME-XMPP:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME_XMPP</code></a>).
2502 If an otherName OID is known, the data will be decoded. Otherwise
2503 the returned data will be DER encoded, and you will have to decode
2504 it yourself. Currently, only the RFC 3920 id-on-xmppAddr Issuer
2505 AltName is recognized.
2507 <div class="variablelist"><table border="0">
2508 <col align="left" valign="top">
2511 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2512 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2515 <td><p><span class="term"><em class="parameter"><code>seq</code></em> :</span></p></td>
2516 <td>specifies the sequence number of the alt name (0 for the first one, 1 for the second etc.)</td>
2519 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
2520 <td>is the place where the alternative name will be copied to</td>
2523 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
2524 <td>holds the size of ret.</td>
2527 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
2528 <td>will be non zero if the extension is marked as critical (may be null)</td>
2531 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2532 <td>the alternative issuer name type on success, one of the
2533 enumerated <a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a>. It will return
2534 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if <em class="parameter"><code>ret_size</code></em> is not large enough
2535 to hold the value. In that case <em class="parameter"><code>ret_size</code></em> will be updated with
2536 the required size. If the certificate does not have an
2537 Alternative name with the specified sequence number then
2538 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> is returned.</td>
2542 <p class="since">Since 2.10.0</p>
2545 <div class="refsect2">
2546 <a name="gnutls-x509-crt-get-issuer-alt-name2"></a><h3>gnutls_x509_crt_get_issuer_alt_name2 ()</h3>
2547 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_issuer_alt_name2
2548 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2549 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
2550 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
2551 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
2552 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *ret_type</code></em>,
2553 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
2555 This function will return the alternative names, contained in the
2556 given certificate. It is the same as
2557 <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-issuer-alt-name" title="gnutls_x509_crt_get_issuer_alt_name ()"><code class="function">gnutls_x509_crt_get_issuer_alt_name()</code></a> except for the fact that it
2558 will return the type of the alternative name in <em class="parameter"><code>ret_type</code></em> even if
2559 the function fails for some reason (i.e. the buffer provided is
2562 <div class="variablelist"><table border="0">
2563 <col align="left" valign="top">
2566 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2567 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2570 <td><p><span class="term"><em class="parameter"><code>seq</code></em> :</span></p></td>
2571 <td>specifies the sequence number of the alt name (0 for the first one, 1 for the second etc.)</td>
2574 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
2575 <td>is the place where the alternative name will be copied to</td>
2578 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
2579 <td>holds the size of ret.</td>
2582 <td><p><span class="term"><em class="parameter"><code>ret_type</code></em> :</span></p></td>
2583 <td>holds the type of the alternative name (one of gnutls_x509_subject_alt_name_t).</td>
2586 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
2587 <td>will be non zero if the extension is marked as critical (may be null)</td>
2590 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2591 <td>the alternative issuer name type on success, one of the
2592 enumerated <a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a>. It will return
2593 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if <em class="parameter"><code>ret_size</code></em> is not large enough
2594 to hold the value. In that case <em class="parameter"><code>ret_size</code></em> will be updated with
2595 the required size. If the certificate does not have an
2596 Alternative name with the specified sequence number then
2597 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> is returned.</td>
2601 <p class="since">Since 2.10.0</p>
2604 <div class="refsect2">
2605 <a name="gnutls-x509-crt-get-issuer-alt-othername-oid"></a><h3>gnutls_x509_crt_get_issuer_alt_othername_oid ()</h3>
2606 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_issuer_alt_othername_oid
2607 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2608 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
2609 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
2610 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>);</pre>
2612 This function will extract the type OID of an otherName Subject
2613 Alternative Name, contained in the given certificate, and return
2614 the type as an enumerated element.
2617 This function is only useful if
2618 <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-issuer-alt-name" title="gnutls_x509_crt_get_issuer_alt_name ()"><code class="function">gnutls_x509_crt_get_issuer_alt_name()</code></a> returned
2619 <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME</code></a>.
2621 <div class="variablelist"><table border="0">
2622 <col align="left" valign="top">
2625 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2626 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2629 <td><p><span class="term"><em class="parameter"><code>seq</code></em> :</span></p></td>
2630 <td>specifies the sequence number of the alt name (0 for the first one, 1 for the second etc.)</td>
2633 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
2634 <td>is the place where the otherName OID will be copied to</td>
2637 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
2638 <td>holds the size of ret.</td>
2641 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2642 <td>the alternative issuer name type on success, one of the
2643 enumerated gnutls_x509_subject_alt_name_t. For supported OIDs, it
2644 will return one of the virtual (GNUTLS_SAN_OTHERNAME_*) types,
2645 e.g. <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME-XMPP:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME_XMPP</code></a>, and <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME</code></a> for
2646 unknown OIDs. It will return <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if
2647 <em class="parameter"><code>ret_size</code></em> is not large enough to hold the value. In that case
2648 <em class="parameter"><code>ret_size</code></em> will be updated with the required size. If the
2649 certificate does not have an Alternative name with the specified
2650 sequence number and with the otherName type then
2651 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> is returned.</td>
2655 <p class="since">Since 2.10.0</p>
2658 <div class="refsect2">
2659 <a name="gnutls-x509-crt-get-ca-status"></a><h3>gnutls_x509_crt_get_ca_status ()</h3>
2660 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_ca_status (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2661 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
2663 This function will return certificates CA status, by reading the
2664 basicConstraints X.509 extension (2.5.29.19). If the certificate is
2665 a CA a positive value will be returned, or zero if the certificate
2666 does not have CA flag set.
2669 Use <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-basic-constraints" title="gnutls_x509_crt_get_basic_constraints ()"><code class="function">gnutls_x509_crt_get_basic_constraints()</code></a> if you want to read the
2670 pathLenConstraint field too.
2672 <div class="variablelist"><table border="0">
2673 <col align="left" valign="top">
2676 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2677 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2680 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
2681 <td>will be non zero if the extension is marked as critical</td>
2684 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2685 <td>A negative value may be returned in case of parsing error.
2686 If the certificate does not contain the basicConstraints extension
2687 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> will be returned.</td>
2693 <div class="refsect2">
2694 <a name="gnutls-x509-crt-get-basic-constraints"></a><h3>gnutls_x509_crt_get_basic_constraints ()</h3>
2695 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_basic_constraints
2696 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2697 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>,
2698 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *ca</code></em>,
2699 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *pathlen</code></em>);</pre>
2701 This function will read the certificate's basic constraints, and
2702 return the certificates CA status. It reads the basicConstraints
2703 X.509 extension (2.5.29.19).
2705 <div class="variablelist"><table border="0">
2706 <col align="left" valign="top">
2709 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2710 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2713 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
2714 <td>will be non zero if the extension is marked as critical</td>
2717 <td><p><span class="term"><em class="parameter"><code>ca</code></em> :</span></p></td>
2718 <td>pointer to output integer indicating CA status, may be NULL,
2719 value is 1 if the certificate CA flag is set, 0 otherwise.</td>
2722 <td><p><span class="term"><em class="parameter"><code>pathlen</code></em> :</span></p></td>
2723 <td>pointer to output integer indicating path length (may be
2724 NULL), non-negative values indicate a present pathLenConstraint
2725 field and the actual value, -1 indicate that the field is absent.</td>
2728 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2729 <td>If the certificate is a CA a positive value will be
2730 returned, or zero if the certificate does not have CA flag set. A
2731 negative value may be returned in case of errors. If the
2732 certificate does not contain the basicConstraints extension
2733 GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE will be returned.</td>
2739 <div class="refsect2">
2740 <a name="gnutls-x509-crt-get-key-usage"></a><h3>gnutls_x509_crt_get_key_usage ()</h3>
2741 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_key_usage (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2742 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *key_usage</code></em>,
2743 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
2745 This function will return certificate's key usage, by reading the
2746 keyUsage X.509 extension (2.5.29.15). The key usage value will ORed
2747 values of the: <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-DIGITAL-SIGNATURE:CAPS" title="GNUTLS_KEY_DIGITAL_SIGNATURE"><code class="literal">GNUTLS_KEY_DIGITAL_SIGNATURE</code></a>,
2748 <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-NON-REPUDIATION:CAPS" title="GNUTLS_KEY_NON_REPUDIATION"><code class="literal">GNUTLS_KEY_NON_REPUDIATION</code></a>, <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-KEY-ENCIPHERMENT:CAPS" title="GNUTLS_KEY_KEY_ENCIPHERMENT"><code class="literal">GNUTLS_KEY_KEY_ENCIPHERMENT</code></a>,
2749 <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-DATA-ENCIPHERMENT:CAPS" title="GNUTLS_KEY_DATA_ENCIPHERMENT"><code class="literal">GNUTLS_KEY_DATA_ENCIPHERMENT</code></a>, <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-KEY-AGREEMENT:CAPS" title="GNUTLS_KEY_KEY_AGREEMENT"><code class="literal">GNUTLS_KEY_KEY_AGREEMENT</code></a>,
2750 <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-KEY-CERT-SIGN:CAPS" title="GNUTLS_KEY_KEY_CERT_SIGN"><code class="literal">GNUTLS_KEY_KEY_CERT_SIGN</code></a>, <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-CRL-SIGN:CAPS" title="GNUTLS_KEY_CRL_SIGN"><code class="literal">GNUTLS_KEY_CRL_SIGN</code></a>,
2751 <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-ENCIPHER-ONLY:CAPS" title="GNUTLS_KEY_ENCIPHER_ONLY"><code class="literal">GNUTLS_KEY_ENCIPHER_ONLY</code></a>, <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-DECIPHER-ONLY:CAPS" title="GNUTLS_KEY_DECIPHER_ONLY"><code class="literal">GNUTLS_KEY_DECIPHER_ONLY</code></a>.
2753 <div class="variablelist"><table border="0">
2754 <col align="left" valign="top">
2757 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2758 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2761 <td><p><span class="term"><em class="parameter"><code>key_usage</code></em> :</span></p></td>
2762 <td>where the key usage bits will be stored</td>
2765 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
2766 <td>will be non zero if the extension is marked as critical</td>
2769 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2770 <td>the certificate key usage, or a negative value in case of
2771 parsing error. If the certificate does not contain the keyUsage
2772 extension <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> will be
2779 <div class="refsect2">
2780 <a name="gnutls-x509-crt-set-key-usage"></a><h3>gnutls_x509_crt_set_key_usage ()</h3>
2781 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_key_usage (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
2782 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> usage</code></em>);</pre>
2784 This function will set the keyUsage certificate extension.
2786 <div class="variablelist"><table border="0">
2787 <col align="left" valign="top">
2790 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
2791 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
2795 <td><p><span class="term"><em class="parameter"><code>usage</code></em> :</span></p></td>
2796 <td>an ORed sequence of the GNUTLS_KEY_* elements.</td>
2799 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2800 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
2801 negative error value.</td>
2807 <div class="refsect2">
2808 <a name="gnutls-x509-crt-get-proxy"></a><h3>gnutls_x509_crt_get_proxy ()</h3>
2809 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_proxy (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2810 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>,
2811 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *pathlen</code></em>,
2812 <em class="parameter"><code><span class="type">char</span> **policyLanguage</code></em>,
2813 <em class="parameter"><code><span class="type">char</span> **policy</code></em>,
2814 <em class="parameter"><code><span class="type">size_t</span> *sizeof_policy</code></em>);</pre>
2816 This function will get information from a proxy certificate. It
2817 reads the ProxyCertInfo X.509 extension (1.3.6.1.5.5.7.1.14).
2819 <div class="variablelist"><table border="0">
2820 <col align="left" valign="top">
2823 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2824 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2827 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
2828 <td>will be non zero if the extension is marked as critical</td>
2831 <td><p><span class="term"><em class="parameter"><code>pathlen</code></em> :</span></p></td>
2832 <td>pointer to output integer indicating path length (may be
2833 NULL), non-negative values indicate a present pCPathLenConstraint
2834 field and the actual value, -1 indicate that the field is absent.</td>
2837 <td><p><span class="term"><em class="parameter"><code>policyLanguage</code></em> :</span></p></td>
2838 <td>output variable with OID of policy language</td>
2841 <td><p><span class="term"><em class="parameter"><code>policy</code></em> :</span></p></td>
2842 <td>output variable with policy data</td>
2845 <td><p><span class="term"><em class="parameter"><code>sizeof_policy</code></em> :</span></p></td>
2846 <td>output variable size of policy data</td>
2849 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2850 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> (zero) is returned,
2851 otherwise an error code is returned.</td>
2857 <div class="refsect2">
2858 <a name="gnutls-x509-dn-oid-known"></a><h3>gnutls_x509_dn_oid_known ()</h3>
2859 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_dn_oid_known (<em class="parameter"><code>const <span class="type">char</span> *oid</code></em>);</pre>
2861 This function will inform about known DN OIDs. This is useful since
2862 functions like <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-dn-by-oid" title="gnutls_x509_crt_set_dn_by_oid ()"><code class="function">gnutls_x509_crt_set_dn_by_oid()</code></a> use the information
2863 on known OIDs to properly encode their input. Object Identifiers
2864 that are not known are not encoded by these functions, and their
2865 input is stored directly into the ASN.1 structure. In that case of
2866 unknown OIDs, you have the responsibility of DER encoding your
2869 <div class="variablelist"><table border="0">
2870 <col align="left" valign="top">
2873 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
2874 <td>holds an Object Identifier in a null terminated string</td>
2877 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2878 <td>1 on known OIDs and 0 otherwise.</td>
2884 <div class="refsect2">
2885 <a name="gnutls-x509-crt-get-extension-oid"></a><h3>gnutls_x509_crt_get_extension_oid ()</h3>
2886 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_extension_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2887 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
2888 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
2889 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);</pre>
2891 This function will return the requested extension OID in the certificate.
2892 The extension OID will be stored as a string in the provided buffer.
2894 <div class="variablelist"><table border="0">
2895 <col align="left" valign="top">
2898 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2899 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2902 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
2903 <td>Specifies which extension OID to send. Use zero to get the first one.</td>
2906 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
2907 <td>a pointer to a structure to hold the OID (may be null)</td>
2910 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
2911 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
2915 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2916 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> (zero) is returned,
2917 otherwise an error code is returned. If you have reached the
2918 last extension available <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a>
2919 will be returned.</td>
2925 <div class="refsect2">
2926 <a name="gnutls-x509-crt-get-extension-by-oid"></a><h3>gnutls_x509_crt_get_extension_by_oid ()</h3>
2927 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_extension_by_oid
2928 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2929 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
2930 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
2931 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
2932 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>,
2933 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
2935 This function will return the extension specified by the OID in the
2936 certificate. The extensions will be returned as binary data DER
2937 encoded, in the provided buffer.
2939 <div class="variablelist"><table border="0">
2940 <col align="left" valign="top">
2943 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
2944 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
2947 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
2948 <td>holds an Object Identified in null terminated string</td>
2951 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
2952 <td>In case multiple same OIDs exist in the extensions, this specifies which to send. Use zero to get the first one.</td>
2955 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
2956 <td>a pointer to a structure to hold the name (may be null)</td>
2959 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
2960 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
2964 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
2965 <td>will be non zero if the extension is marked as critical</td>
2968 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
2969 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> (zero) is returned,
2970 otherwise an error code is returned. If the certificate does not
2971 contain the specified extension
2972 GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE will be returned.</td>
2978 <div class="refsect2">
2979 <a name="gnutls-x509-crt-get-extension-info"></a><h3>gnutls_x509_crt_get_extension_info ()</h3>
2980 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_extension_info (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
2981 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
2982 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
2983 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>,
2984 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
2986 This function will return the requested extension OID in the
2987 certificate, and the critical flag for it. The extension OID will
2988 be stored as a string in the provided buffer. Use
2989 <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-extension-data" title="gnutls_x509_crt_get_extension_data ()"><code class="function">gnutls_x509_crt_get_extension_data()</code></a> to extract the data.
2992 If the buffer provided is not long enough to hold the output, then
2993 *<em class="parameter"><code>sizeof_oid</code></em> is updated and <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> will be
2996 <div class="variablelist"><table border="0">
2997 <col align="left" valign="top">
3000 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
3001 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
3004 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
3005 <td>Specifies which extension OID to send. Use zero to get the first one.</td>
3008 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
3009 <td>a pointer to a structure to hold the OID</td>
3012 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
3013 <td>initially holds the maximum size of <em class="parameter"><code>oid</code></em>, on return
3014 holds actual size of <em class="parameter"><code>oid</code></em>.</td>
3017 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
3018 <td>output variable with critical flag, may be NULL.</td>
3021 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3022 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> (zero) is returned,
3023 otherwise an error code is returned. If you have reached the
3024 last extension available <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a>
3025 will be returned.</td>
3031 <div class="refsect2">
3032 <a name="gnutls-x509-crt-get-extension-data"></a><h3>gnutls_x509_crt_get_extension_data ()</h3>
3033 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_extension_data (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
3034 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
3035 <em class="parameter"><code><span class="type">void</span> *data</code></em>,
3036 <em class="parameter"><code><span class="type">size_t</span> *sizeof_data</code></em>);</pre>
3038 This function will return the requested extension data in the
3039 certificate. The extension data will be stored as a string in the
3043 Use <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-extension-info" title="gnutls_x509_crt_get_extension_info ()"><code class="function">gnutls_x509_crt_get_extension_info()</code></a> to extract the OID and
3044 critical flag. Use <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-extension-by-oid" title="gnutls_x509_crt_get_extension_by_oid ()"><code class="function">gnutls_x509_crt_get_extension_by_oid()</code></a> instead,
3045 if you want to get data indexed by the extension OID rather than
3048 <div class="variablelist"><table border="0">
3049 <col align="left" valign="top">
3052 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
3053 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
3056 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
3057 <td>Specifies which extension OID to send. Use zero to get the first one.</td>
3060 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
3061 <td>a pointer to a structure to hold the data (may be null)</td>
3064 <td><p><span class="term"><em class="parameter"><code>sizeof_data</code></em> :</span></p></td>
3065 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
3069 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3070 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> (zero) is returned,
3071 otherwise an error code is returned. If you have reached the
3072 last extension available <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a>
3073 will be returned.</td>
3079 <div class="refsect2">
3080 <a name="gnutls-x509-crt-set-extension-by-oid"></a><h3>gnutls_x509_crt_set_extension_by_oid ()</h3>
3081 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_extension_by_oid
3082 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3083 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
3084 <em class="parameter"><code>const <span class="type">void</span> *buf</code></em>,
3085 <em class="parameter"><code><span class="type">size_t</span> sizeof_buf</code></em>,
3086 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> critical</code></em>);</pre>
3088 This function will set an the extension, by the specified OID, in
3089 the certificate. The extension data should be binary data DER
3092 <div class="variablelist"><table border="0">
3093 <col align="left" valign="top">
3096 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3097 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3101 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
3102 <td>holds an Object Identified in null terminated string</td>
3105 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
3106 <td>a pointer to a DER encoded data</td>
3109 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
3110 <td>holds the size of <em class="parameter"><code>buf</code></em>
3114 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
3115 <td>should be non zero if the extension is to be marked as critical</td>
3118 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3119 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3120 negative error value.</td>
3126 <div class="refsect2">
3127 <a name="gnutls-x509-crt-set-dn-by-oid"></a><h3>gnutls_x509_crt_set_dn_by_oid ()</h3>
3128 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_dn_by_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3129 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
3130 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
3131 <em class="parameter"><code>const <span class="type">void</span> *name</code></em>,
3132 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> sizeof_name</code></em>);</pre>
3134 This function will set the part of the name of the Certificate
3135 subject, specified by the given OID. The input string should be
3136 ASCII or UTF-8 encoded.
3139 Some helper macros with popular OIDs can be found in gnutls/x509.h
3140 With this function you can only set the known OIDs. You can test
3141 for known OIDs using <a class="link" href="gnutls-x509.html#gnutls-x509-dn-oid-known" title="gnutls_x509_dn_oid_known ()"><code class="function">gnutls_x509_dn_oid_known()</code></a>. For OIDs that are
3142 not known (by gnutls) you should properly DER encode your data,
3143 and call this function with <em class="parameter"><code>raw_flag</code></em> set.
3145 <div class="variablelist"><table border="0">
3146 <col align="left" valign="top">
3149 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3150 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3154 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
3155 <td>holds an Object Identifier in a null terminated string</td>
3158 <td><p><span class="term"><em class="parameter"><code>raw_flag</code></em> :</span></p></td>
3159 <td>must be 0, or 1 if the data are DER encoded</td>
3162 <td><p><span class="term"><em class="parameter"><code>name</code></em> :</span></p></td>
3163 <td>a pointer to the name</td>
3166 <td><p><span class="term"><em class="parameter"><code>sizeof_name</code></em> :</span></p></td>
3167 <td>holds the size of <em class="parameter"><code>name</code></em>
3171 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3172 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3173 negative error value.</td>
3179 <div class="refsect2">
3180 <a name="gnutls-x509-crt-set-issuer-dn-by-oid"></a><h3>gnutls_x509_crt_set_issuer_dn_by_oid ()</h3>
3181 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_issuer_dn_by_oid
3182 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3183 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
3184 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
3185 <em class="parameter"><code>const <span class="type">void</span> *name</code></em>,
3186 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> sizeof_name</code></em>);</pre>
3188 This function will set the part of the name of the Certificate
3189 issuer, specified by the given OID. The input string should be
3190 ASCII or UTF-8 encoded.
3193 Some helper macros with popular OIDs can be found in gnutls/x509.h
3194 With this function you can only set the known OIDs. You can test
3195 for known OIDs using <a class="link" href="gnutls-x509.html#gnutls-x509-dn-oid-known" title="gnutls_x509_dn_oid_known ()"><code class="function">gnutls_x509_dn_oid_known()</code></a>. For OIDs that are
3196 not known (by gnutls) you should properly DER encode your data,
3197 and call this function with <em class="parameter"><code>raw_flag</code></em> set.
3200 Normally you do not need to call this function, since the signing
3201 operation will copy the signer's name as the issuer of the
3204 <div class="variablelist"><table border="0">
3205 <col align="left" valign="top">
3208 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3209 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3213 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
3214 <td>holds an Object Identifier in a null terminated string</td>
3217 <td><p><span class="term"><em class="parameter"><code>raw_flag</code></em> :</span></p></td>
3218 <td>must be 0, or 1 if the data are DER encoded</td>
3221 <td><p><span class="term"><em class="parameter"><code>name</code></em> :</span></p></td>
3222 <td>a pointer to the name</td>
3225 <td><p><span class="term"><em class="parameter"><code>sizeof_name</code></em> :</span></p></td>
3226 <td>holds the size of <em class="parameter"><code>name</code></em>
3230 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3231 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3232 negative error value.</td>
3238 <div class="refsect2">
3239 <a name="gnutls-x509-crt-set-version"></a><h3>gnutls_x509_crt_set_version ()</h3>
3240 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_version (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3241 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> version</code></em>);</pre>
3243 This function will set the version of the certificate. This must
3244 be one for X.509 version 1, and so on. Plain certificates without
3245 extensions must have version set to one.
3248 To create well-formed certificates, you must specify version 3 if
3249 you use any certificate extensions. Extensions are created by
3250 functions such as <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-subject-alt-name" title="gnutls_x509_crt_set_subject_alt_name ()"><code class="function">gnutls_x509_crt_set_subject_alt_name()</code></a>
3251 or <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-key-usage" title="gnutls_x509_crt_set_key_usage ()"><code class="function">gnutls_x509_crt_set_key_usage()</code></a>.
3253 <div class="variablelist"><table border="0">
3254 <col align="left" valign="top">
3257 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3258 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3262 <td><p><span class="term"><em class="parameter"><code>version</code></em> :</span></p></td>
3263 <td>holds the version number. For X.509v1 certificates must be 1.</td>
3266 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3267 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3268 negative error value.</td>
3274 <div class="refsect2">
3275 <a name="gnutls-x509-crt-set-key"></a><h3>gnutls_x509_crt_set_key ()</h3>
3276 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_key (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3277 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);</pre>
3279 This function will set the public parameters from the given
3280 private key to the certificate. Only RSA keys are currently
3283 <div class="variablelist"><table border="0">
3284 <col align="left" valign="top">
3287 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3288 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3292 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
3293 <td>holds a private key</td>
3296 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3297 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3298 negative error value.</td>
3304 <div class="refsect2">
3305 <a name="gnutls-x509-crt-set-ca-status"></a><h3>gnutls_x509_crt_set_ca_status ()</h3>
3306 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_ca_status (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3307 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> ca</code></em>);</pre>
3309 This function will set the basicConstraints certificate extension.
3310 Use <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-basic-constraints" title="gnutls_x509_crt_set_basic_constraints ()"><code class="function">gnutls_x509_crt_set_basic_constraints()</code></a> if you want to control
3311 the pathLenConstraint field too.
3313 <div class="variablelist"><table border="0">
3314 <col align="left" valign="top">
3317 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3318 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3322 <td><p><span class="term"><em class="parameter"><code>ca</code></em> :</span></p></td>
3323 <td>true(1) or false(0). Depending on the Certificate authority status.</td>
3326 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3327 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3328 negative error value.</td>
3334 <div class="refsect2">
3335 <a name="gnutls-x509-crt-set-basic-constraints"></a><h3>gnutls_x509_crt_set_basic_constraints ()</h3>
3336 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_basic_constraints
3337 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3338 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> ca</code></em>,
3339 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> pathLenConstraint</code></em>);</pre>
3341 This function will set the basicConstraints certificate extension.
3343 <div class="variablelist"><table border="0">
3344 <col align="left" valign="top">
3347 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3348 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3352 <td><p><span class="term"><em class="parameter"><code>ca</code></em> :</span></p></td>
3353 <td>true(1) or false(0). Depending on the Certificate authority status.</td>
3356 <td><p><span class="term"><em class="parameter"><code>pathLenConstraint</code></em> :</span></p></td>
3357 <td>non-negative values indicate maximum length of path,
3358 and negative values indicate that the pathLenConstraints field should
3359 not be present.</td>
3362 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3363 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3364 negative error value.</td>
3370 <div class="refsect2">
3371 <a name="gnutls-x509-crt-set-subject-alternative-name"></a><h3>gnutls_x509_crt_set_subject_alternative_name ()</h3>
3372 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_subject_alternative_name
3373 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3374 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> type</code></em>,
3375 <em class="parameter"><code>const <span class="type">char</span> *data_string</code></em>);</pre>
3377 This function will set the subject alternative name certificate
3378 extension. This function assumes that data can be expressed as a null
3382 The name of the function is unfortunate since it is incosistent with
3383 <a class="link" href="gnutls-x509.html#gnutls-x509-crt-get-subject-alt-name" title="gnutls_x509_crt_get_subject_alt_name ()"><code class="function">gnutls_x509_crt_get_subject_alt_name()</code></a>.
3385 <div class="variablelist"><table border="0">
3386 <col align="left" valign="top">
3389 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3390 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3394 <td><p><span class="term"><em class="parameter"><code>type</code></em> :</span></p></td>
3395 <td>is one of the gnutls_x509_subject_alt_name_t enumerations</td>
3398 <td><p><span class="term"><em class="parameter"><code>data_string</code></em> :</span></p></td>
3399 <td>The data to be set, a zero terminated string</td>
3402 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3403 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3404 negative error value.</td>
3410 <div class="refsect2">
3411 <a name="gnutls-x509-crt-set-subject-alt-name"></a><h3>gnutls_x509_crt_set_subject_alt_name ()</h3>
3412 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_subject_alt_name
3413 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3414 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> type</code></em>,
3415 <em class="parameter"><code>const <span class="type">void</span> *data</code></em>,
3416 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> data_size</code></em>,
3417 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);</pre>
3419 This function will set the subject alternative name certificate
3420 extension. It can set the following types:
3423 &GNUTLS_SAN_DNSNAME: as a text string
3426 &GNUTLS_SAN_RFC822NAME: as a text string
3429 &GNUTLS_SAN_URI: as a text string
3432 &GNUTLS_SAN_IPADDRESS: as a binary IP address (4 or 16 bytes)
3435 Other values can be set as binary values with the proper DER encoding.
3437 <div class="variablelist"><table border="0">
3438 <col align="left" valign="top">
3441 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3442 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3446 <td><p><span class="term"><em class="parameter"><code>type</code></em> :</span></p></td>
3447 <td>is one of the gnutls_x509_subject_alt_name_t enumerations</td>
3450 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
3451 <td>The data to be set</td>
3454 <td><p><span class="term"><em class="parameter"><code>data_size</code></em> :</span></p></td>
3455 <td>The size of data to be set</td>
3458 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
3459 <td>GNUTLS_FSAN_SET to clear previous data or GNUTLS_FSAN_APPEND to append.</td>
3462 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3463 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3464 negative error value.</td>
3468 <p class="since">Since 2.6.0</p>
3471 <div class="refsect2">
3472 <a name="gnutls-x509-crt-sign"></a><h3>gnutls_x509_crt_sign ()</h3>
3473 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_sign (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3474 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> issuer</code></em>,
3475 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> issuer_key</code></em>);</pre>
3477 This function is the same a <a class="link" href="gnutls-x509.html#gnutls-x509-crt-sign2" title="gnutls_x509_crt_sign2 ()"><code class="function">gnutls_x509_crt_sign2()</code></a> with no flags,
3478 and SHA1 as the hash algorithm.
3480 <div class="variablelist"><table border="0">
3481 <col align="left" valign="top">
3484 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3485 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3489 <td><p><span class="term"><em class="parameter"><code>issuer</code></em> :</span></p></td>
3490 <td>is the certificate of the certificate issuer</td>
3493 <td><p><span class="term"><em class="parameter"><code>issuer_key</code></em> :</span></p></td>
3494 <td>holds the issuer's private key</td>
3497 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3498 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3499 negative error value.</td>
3505 <div class="refsect2">
3506 <a name="gnutls-x509-crt-sign2"></a><h3>gnutls_x509_crt_sign2 ()</h3>
3507 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_sign2 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3508 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> issuer</code></em>,
3509 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> issuer_key</code></em>,
3510 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-digest-algorithm-t" title="enum gnutls_digest_algorithm_t"><span class="type">gnutls_digest_algorithm_t</span></a> dig</code></em>,
3511 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);</pre>
3513 This function will sign the certificate with the issuer's private key, and
3514 will copy the issuer's information into the certificate.
3517 This must be the last step in a certificate generation since all
3518 the previously set parameters are now signed.
3520 <div class="variablelist"><table border="0">
3521 <col align="left" valign="top">
3524 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3525 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3529 <td><p><span class="term"><em class="parameter"><code>issuer</code></em> :</span></p></td>
3530 <td>is the certificate of the certificate issuer</td>
3533 <td><p><span class="term"><em class="parameter"><code>issuer_key</code></em> :</span></p></td>
3534 <td>holds the issuer's private key</td>
3537 <td><p><span class="term"><em class="parameter"><code>dig</code></em> :</span></p></td>
3538 <td>The message digest to use, <a class="link" href="gnutls-gnutls.html#GNUTLS-DIG-SHA1:CAPS"><code class="literal">GNUTLS_DIG_SHA1</code></a> is a safe choice</td>
3541 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
3545 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3546 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3547 negative error value.</td>
3553 <div class="refsect2">
3554 <a name="gnutls-x509-crt-set-activation-time"></a><h3>gnutls_x509_crt_set_activation_time ()</h3>
3555 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_activation_time (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
3556 <em class="parameter"><code><span class="type">time_t</span> act_time</code></em>);</pre>
3558 This function will set the time this Certificate was or will be
3561 <div class="variablelist"><table border="0">
3562 <col align="left" valign="top">
3565 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
3566 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3570 <td><p><span class="term"><em class="parameter"><code>act_time</code></em> :</span></p></td>
3571 <td>The actual time</td>
3574 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3575 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3576 negative error value.</td>
3582 <div class="refsect2">
3583 <a name="gnutls-x509-crt-set-expiration-time"></a><h3>gnutls_x509_crt_set_expiration_time ()</h3>
3584 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_expiration_time (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
3585 <em class="parameter"><code><span class="type">time_t</span> exp_time</code></em>);</pre>
3587 This function will set the time this Certificate will expire.
3589 <div class="variablelist"><table border="0">
3590 <col align="left" valign="top">
3593 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
3594 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3598 <td><p><span class="term"><em class="parameter"><code>exp_time</code></em> :</span></p></td>
3599 <td>The actual time</td>
3602 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3603 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3604 negative error value.</td>
3610 <div class="refsect2">
3611 <a name="gnutls-x509-crt-set-serial"></a><h3>gnutls_x509_crt_set_serial ()</h3>
3612 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_serial (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
3613 <em class="parameter"><code>const <span class="type">void</span> *serial</code></em>,
3614 <em class="parameter"><code><span class="type">size_t</span> serial_size</code></em>);</pre>
3616 This function will set the X.509 certificate's serial number.
3617 Serial is not always a 32 or 64bit number. Some CAs use large
3618 serial numbers, thus it may be wise to handle it as something
3621 <div class="variablelist"><table border="0">
3622 <col align="left" valign="top">
3625 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
3626 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3630 <td><p><span class="term"><em class="parameter"><code>serial</code></em> :</span></p></td>
3631 <td>The serial number</td>
3634 <td><p><span class="term"><em class="parameter"><code>serial_size</code></em> :</span></p></td>
3635 <td>Holds the size of the serial field.</td>
3638 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3639 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3640 negative error value.</td>
3646 <div class="refsect2">
3647 <a name="gnutls-x509-crt-set-subject-key-id"></a><h3>gnutls_x509_crt_set_subject_key_id ()</h3>
3648 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_subject_key_id (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
3649 <em class="parameter"><code>const <span class="type">void</span> *id</code></em>,
3650 <em class="parameter"><code><span class="type">size_t</span> id_size</code></em>);</pre>
3652 This function will set the X.509 certificate's subject key ID
3655 <div class="variablelist"><table border="0">
3656 <col align="left" valign="top">
3659 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
3660 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3664 <td><p><span class="term"><em class="parameter"><code>id</code></em> :</span></p></td>
3668 <td><p><span class="term"><em class="parameter"><code>id_size</code></em> :</span></p></td>
3669 <td>Holds the size of the serial field.</td>
3672 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3673 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3674 negative error value.</td>
3680 <div class="refsect2">
3681 <a name="gnutls-x509-crt-set-proxy-dn"></a><h3>gnutls_x509_crt_set_proxy_dn ()</h3>
3682 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_proxy_dn (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3683 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> eecrt</code></em>,
3684 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
3685 <em class="parameter"><code>const <span class="type">void</span> *name</code></em>,
3686 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> sizeof_name</code></em>);</pre>
3688 This function will set the subject in <em class="parameter"><code>crt</code></em> to the end entity's
3689 <em class="parameter"><code>eecrt</code></em> subject name, and add a single Common Name component <em class="parameter"><code>name</code></em>
3690 of size <em class="parameter"><code>sizeof_name</code></em>. This corresponds to the required proxy
3691 certificate naming style. Note that if <em class="parameter"><code>name</code></em> is <a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a>, you MUST
3692 set it later by using <a class="link" href="gnutls-x509.html#gnutls-x509-crt-set-dn-by-oid" title="gnutls_x509_crt_set_dn_by_oid ()"><code class="function">gnutls_x509_crt_set_dn_by_oid()</code></a> or similar.
3694 <div class="variablelist"><table border="0">
3695 <col align="left" valign="top">
3698 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3699 <td>a gnutls_x509_crt_t structure with the new proxy cert</td>
3702 <td><p><span class="term"><em class="parameter"><code>eecrt</code></em> :</span></p></td>
3703 <td>the end entity certificate that will be issuing the proxy</td>
3706 <td><p><span class="term"><em class="parameter"><code>raw_flag</code></em> :</span></p></td>
3707 <td>must be 0, or 1 if the CN is DER encoded</td>
3710 <td><p><span class="term"><em class="parameter"><code>name</code></em> :</span></p></td>
3711 <td>a pointer to the CN name, may be NULL (but MUST then be added later)</td>
3714 <td><p><span class="term"><em class="parameter"><code>sizeof_name</code></em> :</span></p></td>
3715 <td>holds the size of <em class="parameter"><code>name</code></em>
3719 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3720 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3721 negative error value.</td>
3727 <div class="refsect2">
3728 <a name="gnutls-x509-crt-set-proxy"></a><h3>gnutls_x509_crt_set_proxy ()</h3>
3729 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_proxy (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
3730 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> pathLenConstraint</code></em>,
3731 <em class="parameter"><code>const <span class="type">char</span> *policyLanguage</code></em>,
3732 <em class="parameter"><code>const <span class="type">char</span> *policy</code></em>,
3733 <em class="parameter"><code><span class="type">size_t</span> sizeof_policy</code></em>);</pre>
3735 This function will set the proxyCertInfo extension.
3737 <div class="variablelist"><table border="0">
3738 <col align="left" valign="top">
3741 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
3742 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
3746 <td><p><span class="term"><em class="parameter"><code>pathLenConstraint</code></em> :</span></p></td>
3747 <td>non-negative values indicate maximum length of path,
3748 and negative values indicate that the pathLenConstraints field should
3749 not be present.</td>
3752 <td><p><span class="term"><em class="parameter"><code>policyLanguage</code></em> :</span></p></td>
3753 <td>OID describing the language of <em class="parameter"><code>policy</code></em>.</td>
3756 <td><p><span class="term"><em class="parameter"><code>policy</code></em> :</span></p></td>
3757 <td>opaque byte array with policy language, can be <a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a>
3761 <td><p><span class="term"><em class="parameter"><code>sizeof_policy</code></em> :</span></p></td>
3762 <td>size of <em class="parameter"><code>policy</code></em>.</td>
3765 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3766 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3767 negative error value.</td>
3773 <div class="refsect2">
3774 <a name="gnutls-x509-crt-print"></a><h3>gnutls_x509_crt_print ()</h3>
3775 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_print (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
3776 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-certificate-print-formats-t" title="enum gnutls_certificate_print_formats_t"><span class="type">gnutls_certificate_print_formats_t</span></a> format</code></em>,
3777 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *out</code></em>);</pre>
3779 This function will pretty print a X.509 certificate, suitable for
3783 If the format is <a class="link" href="gnutls-gnutls.html#GNUTLS-CRT-PRINT-FULL:CAPS"><code class="literal">GNUTLS_CRT_PRINT_FULL</code></a> then all fields of the
3784 certificate will be output, on multiple lines. The
3785 <a class="link" href="gnutls-gnutls.html#GNUTLS-CRT-PRINT-ONELINE:CAPS"><code class="literal">GNUTLS_CRT_PRINT_ONELINE</code></a> format will generate one line with some
3786 selected fields, which is useful for logging purposes.
3789 The output <em class="parameter"><code>out</code></em> needs to be deallocate using <a class="link" href="gnutls-gnutls.html#gnutls-free" title="gnutls_free"><code class="function">gnutls_free()</code></a>.
3791 <div class="variablelist"><table border="0">
3792 <col align="left" valign="top">
3795 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
3796 <td>The structure to be printed</td>
3799 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
3800 <td>Indicate the format to use</td>
3803 <td><p><span class="term"><em class="parameter"><code>out</code></em> :</span></p></td>
3804 <td>Newly allocated datum with zero terminated string.</td>
3807 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3808 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3809 negative error value.</td>
3815 <div class="refsect2">
3816 <a name="gnutls-x509-crl-print"></a><h3>gnutls_x509_crl_print ()</h3>
3817 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_print (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
3818 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-certificate-print-formats-t" title="enum gnutls_certificate_print_formats_t"><span class="type">gnutls_certificate_print_formats_t</span></a> format</code></em>,
3819 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *out</code></em>);</pre>
3821 This function will pretty print a X.509 certificate revocation
3822 list, suitable for display to a human.
3825 The output <em class="parameter"><code>out</code></em> needs to be deallocate using <a class="link" href="gnutls-gnutls.html#gnutls-free" title="gnutls_free"><code class="function">gnutls_free()</code></a>.
3827 <div class="variablelist"><table border="0">
3828 <col align="left" valign="top">
3831 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
3832 <td>The structure to be printed</td>
3835 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
3836 <td>Indicate the format to use</td>
3839 <td><p><span class="term"><em class="parameter"><code>out</code></em> :</span></p></td>
3840 <td>Newly allocated datum with zero terminated string.</td>
3843 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3844 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3845 negative error value.</td>
3851 <div class="refsect2">
3852 <a name="gnutls-x509-crt-get-raw-issuer-dn"></a><h3>gnutls_x509_crt_get_raw_issuer_dn ()</h3>
3853 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_raw_issuer_dn (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
3854 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *start</code></em>);</pre>
3856 This function will return a pointer to the DER encoded DN structure
3859 <div class="variablelist"><table border="0">
3860 <col align="left" valign="top">
3863 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
3864 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
3867 <td><p><span class="term"><em class="parameter"><code>start</code></em> :</span></p></td>
3868 <td>will hold the starting point of the DN</td>
3871 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3872 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3873 negative error value.or a negative value on error.</td>
3879 <div class="refsect2">
3880 <a name="gnutls-x509-crt-get-raw-dn"></a><h3>gnutls_x509_crt_get_raw_dn ()</h3>
3881 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_raw_dn (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
3882 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *start</code></em>);</pre>
3884 This function will return a pointer to the DER encoded DN structure and
3887 <div class="variablelist"><table border="0">
3888 <col align="left" valign="top">
3891 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
3892 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
3895 <td><p><span class="term"><em class="parameter"><code>start</code></em> :</span></p></td>
3896 <td>will hold the starting point of the DN</td>
3899 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3900 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
3901 negative error value. or a negative value on error.</td>
3907 <div class="refsect2">
3908 <a name="gnutls-x509-rdn-get"></a><h3>gnutls_x509_rdn_get ()</h3>
3909 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_rdn_get (<em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *idn</code></em>,
3910 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
3911 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
3913 This function will return the name of the given RDN sequence. The
3914 name will be in the form "C=xxxx,O=yyyy,CN=zzzz" as described in
3917 <div class="variablelist"><table border="0">
3918 <col align="left" valign="top">
3921 <td><p><span class="term"><em class="parameter"><code>idn</code></em> :</span></p></td>
3922 <td>should contain a DER encoded RDN sequence</td>
3925 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
3926 <td>a pointer to a structure to hold the peer's name</td>
3929 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
3930 <td>holds the size of <em class="parameter"><code>buf</code></em>
3934 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3935 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, or
3936 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> is returned and *<em class="parameter"><code>sizeof_buf</code></em> is
3937 updated if the provided buffer is not long enough, otherwise a
3938 negative error value.</td>
3944 <div class="refsect2">
3945 <a name="gnutls-x509-rdn-get-oid"></a><h3>gnutls_x509_rdn_get_oid ()</h3>
3946 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_rdn_get_oid (<em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *idn</code></em>,
3947 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
3948 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
3949 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
3951 This function will return the specified Object identifier, of the
3954 <div class="variablelist"><table border="0">
3955 <col align="left" valign="top">
3958 <td><p><span class="term"><em class="parameter"><code>idn</code></em> :</span></p></td>
3959 <td>should contain a DER encoded RDN sequence</td>
3962 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
3963 <td>Indicates which OID to return. Use 0 for the first one.</td>
3966 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
3967 <td>a pointer to a structure to hold the peer's name OID</td>
3970 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
3971 <td>holds the size of <em class="parameter"><code>buf</code></em>
3975 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
3976 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, or
3977 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> is returned and *<em class="parameter"><code>sizeof_buf</code></em> is
3978 updated if the provided buffer is not long enough, otherwise a
3979 negative error value.</td>
3983 <p class="since">Since 2.4.0</p>
3986 <div class="refsect2">
3987 <a name="gnutls-x509-rdn-get-by-oid"></a><h3>gnutls_x509_rdn_get_by_oid ()</h3>
3988 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_rdn_get_by_oid (<em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *idn</code></em>,
3989 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
3990 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
3991 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
3992 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
3993 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
3995 This function will return the name of the given Object identifier,
3996 of the RDN sequence. The name will be encoded using the rules
3999 <div class="variablelist"><table border="0">
4000 <col align="left" valign="top">
4003 <td><p><span class="term"><em class="parameter"><code>idn</code></em> :</span></p></td>
4004 <td>should contain a DER encoded RDN sequence</td>
4007 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
4008 <td>an Object Identifier</td>
4011 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
4012 <td>In case multiple same OIDs exist in the RDN indicates which
4013 to send. Use 0 for the first one.</td>
4016 <td><p><span class="term"><em class="parameter"><code>raw_flag</code></em> :</span></p></td>
4017 <td>If non zero then the raw DER data are returned.</td>
4020 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
4021 <td>a pointer to a structure to hold the peer's name</td>
4024 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
4025 <td>holds the size of <em class="parameter"><code>buf</code></em>
4029 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4030 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, or
4031 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> is returned and *<em class="parameter"><code>sizeof_buf</code></em> is
4032 updated if the provided buffer is not long enough, otherwise a
4033 negative error value.</td>
4039 <div class="refsect2">
4040 <a name="gnutls-x509-dn-t"></a><h3>gnutls_x509_dn_t</h3>
4041 <pre class="programlisting"> typedef void *gnutls_x509_dn_t;
4047 <div class="refsect2">
4048 <a name="gnutls-x509-crt-get-subject"></a><h3>gnutls_x509_crt_get_subject ()</h3>
4049 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_subject (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
4050 <em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> *dn</code></em>);</pre>
4052 Return the Certificate's Subject DN as an opaque data type. You
4053 may use <a class="link" href="gnutls-x509.html#gnutls-x509-dn-get-rdn-ava" title="gnutls_x509_dn_get_rdn_ava ()"><code class="function">gnutls_x509_dn_get_rdn_ava()</code></a> to decode the DN.
4056 Note that <em class="parameter"><code>dn</code></em> should be treated as constant. Because points
4057 into the <em class="parameter"><code>cert</code></em> object, you may not deallocate <em class="parameter"><code>cert</code></em>
4058 and continue to access <em class="parameter"><code>dn</code></em>.
4060 <div class="variablelist"><table border="0">
4061 <col align="left" valign="top">
4064 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
4065 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
4068 <td><p><span class="term"><em class="parameter"><code>dn</code></em> :</span></p></td>
4069 <td>output variable with pointer to opaque DN.</td>
4072 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4073 <td>Returns 0 on success, or an error code.</td>
4079 <div class="refsect2">
4080 <a name="gnutls-x509-crt-get-issuer"></a><h3>gnutls_x509_crt_get_issuer ()</h3>
4081 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_issuer (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
4082 <em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> *dn</code></em>);</pre>
4084 Return the Certificate's Issuer DN as an opaque data type. You may
4085 use <a class="link" href="gnutls-x509.html#gnutls-x509-dn-get-rdn-ava" title="gnutls_x509_dn_get_rdn_ava ()"><code class="function">gnutls_x509_dn_get_rdn_ava()</code></a> to decode the DN.
4088 Note that <em class="parameter"><code>dn</code></em> should be treated as constant. Because points
4089 into the <em class="parameter"><code>cert</code></em> object, you may not deallocate <em class="parameter"><code>cert</code></em>
4090 and continue to access <em class="parameter"><code>dn</code></em>.
4092 <div class="variablelist"><table border="0">
4093 <col align="left" valign="top">
4096 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
4097 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
4100 <td><p><span class="term"><em class="parameter"><code>dn</code></em> :</span></p></td>
4101 <td>output variable with pointer to opaque DN</td>
4104 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4105 <td>Returns 0 on success, or an error code.</td>
4111 <div class="refsect2">
4112 <a name="gnutls-x509-dn-get-rdn-ava"></a><h3>gnutls_x509_dn_get_rdn_ava ()</h3>
4113 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_dn_get_rdn_ava (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> dn</code></em>,
4114 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> irdn</code></em>,
4115 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> iava</code></em>,
4116 <em class="parameter"><code><span class="type">gnutls_x509_ava_st</span> *ava</code></em>);</pre>
4118 Get pointers to data within the DN.
4121 Note that <em class="parameter"><code>ava</code></em> will contain pointers into the <em class="parameter"><code>dn</code></em> structure, so you
4122 should not modify any data or deallocate it. Note also that the DN
4123 in turn points into the original certificate structure, and thus
4124 you may not deallocate the certificate and continue to access <em class="parameter"><code>dn</code></em>.
4126 <div class="variablelist"><table border="0">
4127 <col align="left" valign="top">
4130 <td><p><span class="term"><em class="parameter"><code>dn</code></em> :</span></p></td>
4131 <td>input variable with opaque DN pointer</td>
4134 <td><p><span class="term"><em class="parameter"><code>irdn</code></em> :</span></p></td>
4135 <td>index of RDN</td>
4138 <td><p><span class="term"><em class="parameter"><code>iava</code></em> :</span></p></td>
4139 <td>index of AVA.</td>
4142 <td><p><span class="term"><em class="parameter"><code>ava</code></em> :</span></p></td>
4143 <td>Pointer to structure which will hold output information.</td>
4146 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4147 <td>Returns 0 on success, or an error code.</td>
4153 <div class="refsect2">
4154 <a name="gnutls-x509-dn-init"></a><h3>gnutls_x509_dn_init ()</h3>
4155 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_dn_init (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> *dn</code></em>);</pre>
4157 This function initializes a <a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> structure.
4160 The object returned must be deallocated using
4161 <a class="link" href="gnutls-x509.html#gnutls-x509-dn-deinit" title="gnutls_x509_dn_deinit ()"><code class="function">gnutls_x509_dn_deinit()</code></a>.
4163 <div class="variablelist"><table border="0">
4164 <col align="left" valign="top">
4167 <td><p><span class="term"><em class="parameter"><code>dn</code></em> :</span></p></td>
4168 <td>the object to be initialized</td>
4171 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4172 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4173 negative error value.</td>
4177 <p class="since">Since 2.4.0</p>
4180 <div class="refsect2">
4181 <a name="gnutls-x509-dn-import"></a><h3>gnutls_x509_dn_import ()</h3>
4182 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_dn_import (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> dn</code></em>,
4183 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>);</pre>
4185 This function parses an RDN sequence and stores the result to a
4186 <a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> structure. The structure must have been initialized
4187 with <a class="link" href="gnutls-x509.html#gnutls-x509-dn-init" title="gnutls_x509_dn_init ()"><code class="function">gnutls_x509_dn_init()</code></a>. You may use <a class="link" href="gnutls-x509.html#gnutls-x509-dn-get-rdn-ava" title="gnutls_x509_dn_get_rdn_ava ()"><code class="function">gnutls_x509_dn_get_rdn_ava()</code></a> to
4190 <div class="variablelist"><table border="0">
4191 <col align="left" valign="top">
4194 <td><p><span class="term"><em class="parameter"><code>dn</code></em> :</span></p></td>
4195 <td>the structure that will hold the imported DN</td>
4198 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
4199 <td>should contain a DER encoded RDN sequence</td>
4202 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4203 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4204 negative error value.</td>
4208 <p class="since">Since 2.4.0</p>
4211 <div class="refsect2">
4212 <a name="gnutls-x509-dn-export"></a><h3>gnutls_x509_dn_export ()</h3>
4213 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_dn_export (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> dn</code></em>,
4214 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
4215 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
4216 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);</pre>
4218 This function will export the DN to DER or PEM format.
4221 If the buffer provided is not long enough to hold the output, then
4222 *<em class="parameter"><code>output_data_size</code></em> is updated and <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a>
4226 If the structure is PEM encoded, it will have a header
4229 <div class="variablelist"><table border="0">
4230 <col align="left" valign="top">
4233 <td><p><span class="term"><em class="parameter"><code>dn</code></em> :</span></p></td>
4234 <td>Holds the opaque DN object</td>
4237 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
4238 <td>the format of output params. One of PEM or DER.</td>
4241 <td><p><span class="term"><em class="parameter"><code>output_data</code></em> :</span></p></td>
4242 <td>will contain a DN PEM or DER encoded</td>
4245 <td><p><span class="term"><em class="parameter"><code>output_data_size</code></em> :</span></p></td>
4246 <td>holds the size of output_data (and will be
4247 replaced by the actual size of parameters)</td>
4250 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4251 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4252 negative error value.</td>
4258 <div class="refsect2">
4259 <a name="gnutls-x509-dn-deinit"></a><h3>gnutls_x509_dn_deinit ()</h3>
4260 <pre class="programlisting"><span class="returnvalue">void</span> gnutls_x509_dn_deinit (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-x509-dn-t" title="gnutls_x509_dn_t"><span class="type">gnutls_x509_dn_t</span></a> dn</code></em>);</pre>
4262 This function deallocates the DN object as returned by
4263 <a class="link" href="gnutls-x509.html#gnutls-x509-dn-import" title="gnutls_x509_dn_import ()"><code class="function">gnutls_x509_dn_import()</code></a>.
4265 <div class="variablelist"><table border="0">
4266 <col align="left" valign="top">
4268 <td><p><span class="term"><em class="parameter"><code>dn</code></em> :</span></p></td>
4269 <td>a DN opaque object pointer.</td>
4272 <p class="since">Since 2.4.0</p>
4275 <div class="refsect2">
4276 <a name="gnutls-x509-crl-init"></a><h3>gnutls_x509_crl_init ()</h3>
4277 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_init (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> *crl</code></em>);</pre>
4279 This function will initialize a CRL structure. CRL stands for
4280 Certificate Revocation List. A revocation list usually contains
4281 lists of certificate serial numbers that have been revoked by an
4282 Authority. The revocation lists are always signed with the
4283 authority's private key.
4285 <div class="variablelist"><table border="0">
4286 <col align="left" valign="top">
4289 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4290 <td>The structure to be initialized</td>
4293 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4294 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4295 negative error value.</td>
4301 <div class="refsect2">
4302 <a name="gnutls-x509-crl-deinit"></a><h3>gnutls_x509_crl_deinit ()</h3>
4303 <pre class="programlisting"><span class="returnvalue">void</span> gnutls_x509_crl_deinit (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);</pre>
4305 This function will deinitialize a CRL structure.
4307 <div class="variablelist"><table border="0">
4308 <col align="left" valign="top">
4310 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4311 <td>The structure to be initialized</td>
4316 <div class="refsect2">
4317 <a name="gnutls-x509-crl-import"></a><h3>gnutls_x509_crl_import ()</h3>
4318 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_import (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4319 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
4320 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>);</pre>
4322 This function will convert the given DER or PEM encoded CRL
4323 to the native <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> format. The output will be stored in 'crl'.
4326 If the CRL is PEM encoded it should have a header of "X509 CRL".
4328 <div class="variablelist"><table border="0">
4329 <col align="left" valign="top">
4332 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4333 <td>The structure to store the parsed CRL.</td>
4336 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
4337 <td>The DER or PEM encoded CRL.</td>
4340 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
4341 <td>One of DER or PEM</td>
4344 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4345 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4346 negative error value.</td>
4352 <div class="refsect2">
4353 <a name="gnutls-x509-crl-export"></a><h3>gnutls_x509_crl_export ()</h3>
4354 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_export (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4355 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
4356 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
4357 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);</pre>
4359 This function will export the revocation list to DER or PEM format.
4362 If the buffer provided is not long enough to hold the output, then
4363 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> will be returned.
4366 If the structure is PEM encoded, it will have a header
4367 of "BEGIN X509 CRL".
4369 <div class="variablelist"><table border="0">
4370 <col align="left" valign="top">
4373 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4374 <td>Holds the revocation list</td>
4377 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
4378 <td>the format of output params. One of PEM or DER.</td>
4381 <td><p><span class="term"><em class="parameter"><code>output_data</code></em> :</span></p></td>
4382 <td>will contain a private key PEM or DER encoded</td>
4385 <td><p><span class="term"><em class="parameter"><code>output_data_size</code></em> :</span></p></td>
4386 <td>holds the size of output_data (and will
4387 be replaced by the actual size of parameters)</td>
4390 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4391 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4392 negative error value. and a negative value on failure.</td>
4398 <div class="refsect2">
4399 <a name="gnutls-x509-crl-get-raw-issuer-dn"></a><h3>gnutls_x509_crl_get_raw_issuer_dn ()</h3>
4400 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_raw_issuer_dn (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4401 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *dn</code></em>);</pre>
4403 This function will return a pointer to the DER encoded DN structure
4406 <div class="variablelist"><table border="0">
4407 <col align="left" valign="top">
4410 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4411 <td>should contain a gnutls_x509_crl_t structure</td>
4414 <td><p><span class="term"><em class="parameter"><code>dn</code></em> :</span></p></td>
4415 <td>will hold the starting point of the DN</td>
4418 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4419 <td>a negative value on error, and zero on success.</td>
4423 <p class="since">Since 2.12.0</p>
4426 <div class="refsect2">
4427 <a name="gnutls-x509-crl-get-issuer-dn"></a><h3>gnutls_x509_crl_get_issuer_dn ()</h3>
4428 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_issuer_dn (<em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4429 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
4430 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
4432 This function will copy the name of the CRL issuer in the provided
4433 buffer. The name will be in the form "C=xxxx,O=yyyy,CN=zzzz" as
4434 described in RFC2253. The output string will be ASCII or UTF-8
4435 encoded, depending on the certificate data.
4438 If buf is <a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a> then only the size will be filled.
4440 <div class="variablelist"><table border="0">
4441 <col align="left" valign="top">
4444 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4445 <td>should contain a gnutls_x509_crl_t structure</td>
4448 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
4449 <td>a pointer to a structure to hold the peer's name (may be null)</td>
4452 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
4453 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
4457 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4459 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is
4460 not long enough, and in that case the sizeof_buf will be updated
4461 with the required size, and 0 on success.</td>
4467 <div class="refsect2">
4468 <a name="gnutls-x509-crl-get-issuer-dn-by-oid"></a><h3>gnutls_x509_crl_get_issuer_dn_by_oid ()</h3>
4469 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_issuer_dn_by_oid
4470 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4471 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
4472 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
4473 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
4474 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
4475 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
4477 This function will extract the part of the name of the CRL issuer
4478 specified by the given OID. The output will be encoded as described
4479 in RFC2253. The output string will be ASCII or UTF-8 encoded,
4480 depending on the certificate data.
4483 Some helper macros with popular OIDs can be found in gnutls/x509.h
4484 If raw flag is zero, this function will only return known OIDs as
4485 text. Other OIDs will be DER encoded, as described in RFC2253 -- in
4486 hex format with a '#' prefix. You can check about known OIDs
4487 using <a class="link" href="gnutls-x509.html#gnutls-x509-dn-oid-known" title="gnutls_x509_dn_oid_known ()"><code class="function">gnutls_x509_dn_oid_known()</code></a>.
4490 If buf is null then only the size will be filled.
4492 <div class="variablelist"><table border="0">
4493 <col align="left" valign="top">
4496 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4497 <td>should contain a gnutls_x509_crl_t structure</td>
4500 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
4501 <td>holds an Object Identified in null terminated string</td>
4504 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
4505 <td>In case multiple same OIDs exist in the RDN, this specifies which to send. Use zero to get the first one.</td>
4508 <td><p><span class="term"><em class="parameter"><code>raw_flag</code></em> :</span></p></td>
4509 <td>If non zero returns the raw DER data of the DN part.</td>
4512 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
4513 <td>a pointer to a structure to hold the peer's name (may be null)</td>
4516 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
4517 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
4521 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4523 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is
4524 not long enough, and in that case the sizeof_buf will be updated
4525 with the required size, and 0 on success.</td>
4531 <div class="refsect2">
4532 <a name="gnutls-x509-crl-get-dn-oid"></a><h3>gnutls_x509_crl_get_dn_oid ()</h3>
4533 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_dn_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4534 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
4535 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
4536 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);</pre>
4538 This function will extract the requested OID of the name of the CRL
4539 issuer, specified by the given index.
4542 If oid is null then only the size will be filled.
4544 <div class="variablelist"><table border="0">
4545 <col align="left" valign="top">
4548 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4549 <td>should contain a gnutls_x509_crl_t structure</td>
4552 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
4553 <td>Specifies which DN OID to send. Use zero to get the first one.</td>
4556 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
4557 <td>a pointer to a structure to hold the name (may be null)</td>
4560 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
4561 <td>initially holds the size of 'oid'</td>
4564 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4566 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is
4567 not long enough, and in that case the sizeof_oid will be updated
4568 with the required size. On success 0 is returned.</td>
4574 <div class="refsect2">
4575 <a name="gnutls-x509-crl-get-signature-algorithm"></a><h3>gnutls_x509_crl_get_signature_algorithm ()</h3>
4576 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_signature_algorithm
4577 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);</pre>
4579 This function will return a value of the <a class="link" href="gnutls-gnutls.html#gnutls-sign-algorithm-t" title="enum gnutls_sign_algorithm_t"><span class="type">gnutls_sign_algorithm_t</span></a>
4580 enumeration that is the signature algorithm.
4582 <div class="variablelist"><table border="0">
4583 <col align="left" valign="top">
4586 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4587 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
4590 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4591 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4592 negative error value.</td>
4598 <div class="refsect2">
4599 <a name="gnutls-x509-crl-get-signature"></a><h3>gnutls_x509_crl_get_signature ()</h3>
4600 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_signature (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4601 <em class="parameter"><code><span class="type">char</span> *sig</code></em>,
4602 <em class="parameter"><code><span class="type">size_t</span> *sizeof_sig</code></em>);</pre>
4604 This function will extract the signature field of a CRL.
4606 <div class="variablelist"><table border="0">
4607 <col align="left" valign="top">
4610 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4611 <td>should contain a gnutls_x509_crl_t structure</td>
4614 <td><p><span class="term"><em class="parameter"><code>sig</code></em> :</span></p></td>
4615 <td>a pointer where the signature part will be copied (may be null).</td>
4618 <td><p><span class="term"><em class="parameter"><code>sizeof_sig</code></em> :</span></p></td>
4619 <td>initially holds the size of <em class="parameter"><code>sig</code></em>
4623 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4624 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4625 negative error value. and a negative value on error.</td>
4631 <div class="refsect2">
4632 <a name="gnutls-x509-crl-get-version"></a><h3>gnutls_x509_crl_get_version ()</h3>
4633 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_version (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);</pre>
4635 This function will return the version of the specified CRL.
4637 <div class="variablelist"><table border="0">
4638 <col align="left" valign="top">
4641 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4642 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
4645 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4646 <td>The version number, or a negative value on error.</td>
4652 <div class="refsect2">
4653 <a name="gnutls-x509-crl-get-this-update"></a><h3>gnutls_x509_crl_get_this_update ()</h3>
4654 <pre class="programlisting"><span class="returnvalue">time_t</span> gnutls_x509_crl_get_this_update (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);</pre>
4656 This function will return the time this CRL was issued.
4658 <div class="variablelist"><table border="0">
4659 <col align="left" valign="top">
4662 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4663 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
4666 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4667 <td>when the CRL was issued, or (time_t)-1 on error.</td>
4673 <div class="refsect2">
4674 <a name="gnutls-x509-crl-get-next-update"></a><h3>gnutls_x509_crl_get_next_update ()</h3>
4675 <pre class="programlisting"><span class="returnvalue">time_t</span> gnutls_x509_crl_get_next_update (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);</pre>
4677 This function will return the time the next CRL will be issued.
4678 This field is optional in a CRL so it might be normal to get an
4681 <div class="variablelist"><table border="0">
4682 <col align="left" valign="top">
4685 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4686 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
4689 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4690 <td>when the next CRL will be issued, or (time_t)-1 on error.</td>
4696 <div class="refsect2">
4697 <a name="gnutls-x509-crl-get-crt-count"></a><h3>gnutls_x509_crl_get_crt_count ()</h3>
4698 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_crt_count (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);</pre>
4700 This function will return the number of revoked certificates in the
4703 <div class="variablelist"><table border="0">
4704 <col align="left" valign="top">
4707 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4708 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
4711 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4712 <td>number of certificates, a negative value on failure.</td>
4718 <div class="refsect2">
4719 <a name="gnutls-x509-crl-get-crt-serial"></a><h3>gnutls_x509_crl_get_crt_serial ()</h3>
4720 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_crt_serial (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4721 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
4722 <em class="parameter"><code>unsigned <span class="type">char</span> *serial</code></em>,
4723 <em class="parameter"><code><span class="type">size_t</span> *serial_size</code></em>,
4724 <em class="parameter"><code><span class="type">time_t</span> *t</code></em>);</pre>
4726 This function will retrieve the serial number of the specified, by
4727 the index, revoked certificate.
4729 <div class="variablelist"><table border="0">
4730 <col align="left" valign="top">
4733 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4734 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
4737 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
4738 <td>the index of the certificate to extract (starting from 0)</td>
4741 <td><p><span class="term"><em class="parameter"><code>serial</code></em> :</span></p></td>
4742 <td>where the serial number will be copied</td>
4745 <td><p><span class="term"><em class="parameter"><code>serial_size</code></em> :</span></p></td>
4746 <td>initially holds the size of serial</td>
4749 <td><p><span class="term"><em class="parameter"><code>t</code></em> :</span></p></td>
4750 <td>if non null, will hold the time this certificate was revoked</td>
4753 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4754 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4755 negative error value. and a negative value on error.</td>
4761 <div class="refsect2">
4762 <a name="gnutls-x509-crl-get-certificate-count"></a><h3>gnutls_x509_crl_get_certificate_count</h3>
4763 <pre class="programlisting">#define gnutls_x509_crl_get_certificate_count gnutls_x509_crl_get_crt_count
4769 <div class="refsect2">
4770 <a name="gnutls-x509-crl-get-certificate"></a><h3>gnutls_x509_crl_get_certificate</h3>
4771 <pre class="programlisting">#define gnutls_x509_crl_get_certificate gnutls_x509_crl_get_crt_serial
4777 <div class="refsect2">
4778 <a name="gnutls-x509-crl-check-issuer"></a><h3>gnutls_x509_crl_check_issuer ()</h3>
4779 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_check_issuer (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4780 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> issuer</code></em>);</pre>
4782 This function will check if the given CRL was issued by the given
4783 issuer certificate. It will return true (1) if the given CRL was
4784 issued by the given issuer, and false (0) if not.
4786 <div class="variablelist"><table border="0">
4787 <col align="left" valign="top">
4790 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4791 <td>is the CRL to be checked</td>
4794 <td><p><span class="term"><em class="parameter"><code>issuer</code></em> :</span></p></td>
4795 <td>is the certificate of a possible issuer</td>
4798 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4799 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4800 negative error value.</td>
4806 <div class="refsect2">
4807 <a name="gnutls-x509-crl-set-version"></a><h3>gnutls_x509_crl_set_version ()</h3>
4808 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_set_version (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4809 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> version</code></em>);</pre>
4811 This function will set the version of the CRL. This
4812 must be one for CRL version 1, and so on. The CRLs generated
4813 by gnutls should have a version number of 2.
4815 <div class="variablelist"><table border="0">
4816 <col align="left" valign="top">
4819 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4820 <td>should contain a gnutls_x509_crl_t structure</td>
4823 <td><p><span class="term"><em class="parameter"><code>version</code></em> :</span></p></td>
4824 <td>holds the version number. For CRLv1 crls must be 1.</td>
4827 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4828 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4829 negative error value.</td>
4835 <div class="refsect2">
4836 <a name="gnutls-x509-crl-set-this-update"></a><h3>gnutls_x509_crl_set_this_update ()</h3>
4837 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_set_this_update (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4838 <em class="parameter"><code><span class="type">time_t</span> act_time</code></em>);</pre>
4840 This function will set the time this CRL was issued.
4842 <div class="variablelist"><table border="0">
4843 <col align="left" valign="top">
4846 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4847 <td>should contain a gnutls_x509_crl_t structure</td>
4850 <td><p><span class="term"><em class="parameter"><code>act_time</code></em> :</span></p></td>
4851 <td>The actual time</td>
4854 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4855 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4856 negative error value.</td>
4862 <div class="refsect2">
4863 <a name="gnutls-x509-crl-set-next-update"></a><h3>gnutls_x509_crl_set_next_update ()</h3>
4864 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_set_next_update (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4865 <em class="parameter"><code><span class="type">time_t</span> exp_time</code></em>);</pre>
4867 This function will set the time this CRL will be updated.
4869 <div class="variablelist"><table border="0">
4870 <col align="left" valign="top">
4873 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4874 <td>should contain a gnutls_x509_crl_t structure</td>
4877 <td><p><span class="term"><em class="parameter"><code>exp_time</code></em> :</span></p></td>
4878 <td>The actual time</td>
4881 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4882 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4883 negative error value.</td>
4889 <div class="refsect2">
4890 <a name="gnutls-x509-crl-set-crt-serial"></a><h3>gnutls_x509_crl_set_crt_serial ()</h3>
4891 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_set_crt_serial (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4892 <em class="parameter"><code>const <span class="type">void</span> *serial</code></em>,
4893 <em class="parameter"><code><span class="type">size_t</span> serial_size</code></em>,
4894 <em class="parameter"><code><span class="type">time_t</span> revocation_time</code></em>);</pre>
4896 This function will set a revoked certificate's serial number to the CRL.
4898 <div class="variablelist"><table border="0">
4899 <col align="left" valign="top">
4902 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4903 <td>should contain a gnutls_x509_crl_t structure</td>
4906 <td><p><span class="term"><em class="parameter"><code>serial</code></em> :</span></p></td>
4907 <td>The revoked certificate's serial number</td>
4910 <td><p><span class="term"><em class="parameter"><code>serial_size</code></em> :</span></p></td>
4911 <td>Holds the size of the serial field.</td>
4914 <td><p><span class="term"><em class="parameter"><code>revocation_time</code></em> :</span></p></td>
4915 <td>The time this certificate was revoked</td>
4918 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4919 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4920 negative error value.</td>
4926 <div class="refsect2">
4927 <a name="gnutls-x509-crl-set-crt"></a><h3>gnutls_x509_crl_set_crt ()</h3>
4928 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_set_crt (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4929 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
4930 <em class="parameter"><code><span class="type">time_t</span> revocation_time</code></em>);</pre>
4932 This function will set a revoked certificate's serial number to the CRL.
4934 <div class="variablelist"><table border="0">
4935 <col align="left" valign="top">
4938 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4939 <td>should contain a gnutls_x509_crl_t structure</td>
4942 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
4943 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> with the revoked certificate</td>
4946 <td><p><span class="term"><em class="parameter"><code>revocation_time</code></em> :</span></p></td>
4947 <td>The time this certificate was revoked</td>
4950 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4951 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4952 negative error value.</td>
4958 <div class="refsect2">
4959 <a name="gnutls-x509-crl-get-authority-key-id"></a><h3>gnutls_x509_crl_get_authority_key_id ()</h3>
4960 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_authority_key_id
4961 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
4962 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
4963 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
4964 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
4966 This function will return the CRL authority's key identifier. This
4967 is obtained by the X.509 Authority Key identifier extension field
4968 (2.5.29.35). Note that this function only returns the
4969 keyIdentifier field of the extension.
4971 <div class="variablelist"><table border="0">
4972 <col align="left" valign="top">
4975 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
4976 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
4979 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
4980 <td>The place where the identifier will be copied</td>
4983 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
4984 <td>Holds the size of the result field.</td>
4987 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
4988 <td>will be non zero if the extension is marked as critical
4992 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
4993 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
4994 negative value in case of an error.</td>
4998 <p class="since">Since 2.8.0</p>
5001 <div class="refsect2">
5002 <a name="gnutls-x509-crl-get-number"></a><h3>gnutls_x509_crl_get_number ()</h3>
5003 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_number (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
5004 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
5005 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
5006 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
5008 This function will return the CRL number extension. This is
5009 obtained by the CRL Number extension field (2.5.29.20).
5011 <div class="variablelist"><table border="0">
5012 <col align="left" valign="top">
5015 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
5016 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
5019 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
5020 <td>The place where the number will be copied</td>
5023 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
5024 <td>Holds the size of the result field.</td>
5027 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
5028 <td>will be non zero if the extension is marked as critical
5032 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5033 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5034 negative value in case of an error.</td>
5038 <p class="since">Since 2.8.0</p>
5041 <div class="refsect2">
5042 <a name="gnutls-x509-crl-get-extension-oid"></a><h3>gnutls_x509_crl_get_extension_oid ()</h3>
5043 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_extension_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
5044 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
5045 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
5046 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);</pre>
5048 This function will return the requested extension OID in the CRL.
5049 The extension OID will be stored as a string in the provided
5052 <div class="variablelist"><table border="0">
5053 <col align="left" valign="top">
5056 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
5057 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
5060 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
5061 <td>Specifies which extension OID to send, use zero to get the first one.</td>
5064 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
5065 <td>a pointer to a structure to hold the OID (may be null)</td>
5068 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
5069 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
5073 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5074 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5075 negative value in case of an error. If your have reached the
5076 last extension available <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a>
5077 will be returned.</td>
5081 <p class="since">Since 2.8.0</p>
5084 <div class="refsect2">
5085 <a name="gnutls-x509-crl-get-extension-info"></a><h3>gnutls_x509_crl_get_extension_info ()</h3>
5086 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_extension_info (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
5087 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
5088 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
5089 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>,
5090 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
5092 This function will return the requested extension OID in the CRL,
5093 and the critical flag for it. The extension OID will be stored as
5094 a string in the provided buffer. Use
5095 <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-extension-data" title="gnutls_x509_crl_get_extension_data ()"><code class="function">gnutls_x509_crl_get_extension_data()</code></a> to extract the data.
5098 If the buffer provided is not long enough to hold the output, then
5099 *<em class="parameter"><code>sizeof_oid</code></em> is updated and <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> will be
5102 <div class="variablelist"><table border="0">
5103 <col align="left" valign="top">
5106 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
5107 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
5110 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
5111 <td>Specifies which extension OID to send, use zero to get the first one.</td>
5114 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
5115 <td>a pointer to a structure to hold the OID</td>
5118 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
5119 <td>initially holds the maximum size of <em class="parameter"><code>oid</code></em>, on return
5120 holds actual size of <em class="parameter"><code>oid</code></em>.</td>
5123 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
5124 <td>output variable with critical flag, may be NULL.</td>
5127 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5128 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5129 negative value in case of an error. If your have reached the
5130 last extension available <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a>
5131 will be returned.</td>
5135 <p class="since">Since 2.8.0</p>
5138 <div class="refsect2">
5139 <a name="gnutls-x509-crl-get-extension-data"></a><h3>gnutls_x509_crl_get_extension_data ()</h3>
5140 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_get_extension_data (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
5141 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
5142 <em class="parameter"><code><span class="type">void</span> *data</code></em>,
5143 <em class="parameter"><code><span class="type">size_t</span> *sizeof_data</code></em>);</pre>
5145 This function will return the requested extension data in the CRL.
5146 The extension data will be stored as a string in the provided
5150 Use <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-extension-info" title="gnutls_x509_crl_get_extension_info ()"><code class="function">gnutls_x509_crl_get_extension_info()</code></a> to extract the OID and
5151 critical flag. Use <a class="link" href="gnutls-x509.html#gnutls-x509-crl-get-extension-info" title="gnutls_x509_crl_get_extension_info ()"><code class="function">gnutls_x509_crl_get_extension_info()</code></a> instead,
5152 if you want to get data indexed by the extension OID rather than
5155 <div class="variablelist"><table border="0">
5156 <col align="left" valign="top">
5159 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
5160 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> structure</td>
5163 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
5164 <td>Specifies which extension OID to send. Use zero to get the first one.</td>
5167 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
5168 <td>a pointer to a structure to hold the data (may be null)</td>
5171 <td><p><span class="term"><em class="parameter"><code>sizeof_data</code></em> :</span></p></td>
5172 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
5176 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5177 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5178 negative value in case of an error. If your have reached the
5179 last extension available <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a>
5180 will be returned.</td>
5184 <p class="since">Since 2.8.0</p>
5187 <div class="refsect2">
5188 <a name="gnutls-x509-crl-set-authority-key-id"></a><h3>gnutls_x509_crl_set_authority_key_id ()</h3>
5189 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_set_authority_key_id
5190 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
5191 <em class="parameter"><code>const <span class="type">void</span> *id</code></em>,
5192 <em class="parameter"><code><span class="type">size_t</span> id_size</code></em>);</pre>
5194 This function will set the CRL's authority key ID extension. Only
5195 the keyIdentifier field can be set with this function.
5197 <div class="variablelist"><table border="0">
5198 <col align="left" valign="top">
5201 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
5202 <td>a CRL of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a>
5206 <td><p><span class="term"><em class="parameter"><code>id</code></em> :</span></p></td>
5210 <td><p><span class="term"><em class="parameter"><code>id_size</code></em> :</span></p></td>
5211 <td>Holds the size of the serial field.</td>
5214 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5215 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5216 negative error value.</td>
5220 <p class="since">Since 2.8.0</p>
5223 <div class="refsect2">
5224 <a name="gnutls-x509-crl-set-number"></a><h3>gnutls_x509_crl_set_number ()</h3>
5225 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_set_number (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
5226 <em class="parameter"><code>const <span class="type">void</span> *nr</code></em>,
5227 <em class="parameter"><code><span class="type">size_t</span> nr_size</code></em>);</pre>
5229 This function will set the CRL's number extension.
5231 <div class="variablelist"><table border="0">
5232 <col align="left" valign="top">
5235 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
5236 <td>a CRL of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a>
5240 <td><p><span class="term"><em class="parameter"><code>nr</code></em> :</span></p></td>
5241 <td>The CRL number</td>
5244 <td><p><span class="term"><em class="parameter"><code>nr_size</code></em> :</span></p></td>
5245 <td>Holds the size of the nr field.</td>
5248 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5249 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5250 negative error value.</td>
5254 <p class="since">Since 2.8.0</p>
5257 <div class="refsect2">
5258 <a name="gnutls-pkcs7-int"></a><h3>struct gnutls_pkcs7_int</h3>
5259 <pre class="programlisting">struct gnutls_pkcs7_int;</pre>
5264 <div class="refsect2">
5265 <a name="gnutls-pkcs7-t"></a><h3>gnutls_pkcs7_t</h3>
5266 <pre class="programlisting"> typedef struct gnutls_pkcs7_int *gnutls_pkcs7_t;
5272 <div class="refsect2">
5273 <a name="gnutls-pkcs7-init"></a><h3>gnutls_pkcs7_init ()</h3>
5274 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_init (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> *pkcs7</code></em>);</pre>
5276 This function will initialize a PKCS7 structure. PKCS7 structures
5277 usually contain lists of X.509 Certificates and X.509 Certificate
5280 <div class="variablelist"><table border="0">
5281 <col align="left" valign="top">
5284 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5285 <td>The structure to be initialized</td>
5288 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5289 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5290 negative error value.</td>
5296 <div class="refsect2">
5297 <a name="gnutls-pkcs7-deinit"></a><h3>gnutls_pkcs7_deinit ()</h3>
5298 <pre class="programlisting"><span class="returnvalue">void</span> gnutls_pkcs7_deinit (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>);</pre>
5300 This function will deinitialize a PKCS7 structure.
5302 <div class="variablelist"><table border="0">
5303 <col align="left" valign="top">
5305 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5306 <td>The structure to be initialized</td>
5311 <div class="refsect2">
5312 <a name="gnutls-pkcs7-import"></a><h3>gnutls_pkcs7_import ()</h3>
5313 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_import (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
5314 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
5315 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>);</pre>
5317 This function will convert the given DER or PEM encoded PKCS7 to
5318 the native <a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> format. The output will be stored in
5319 <em class="parameter"><code>pkcs7</code></em>.
5322 If the PKCS7 is PEM encoded it should have a header of "PKCS7".
5324 <div class="variablelist"><table border="0">
5325 <col align="left" valign="top">
5328 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5329 <td>The structure to store the parsed PKCS7.</td>
5332 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
5333 <td>The DER or PEM encoded PKCS7.</td>
5336 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
5337 <td>One of DER or PEM</td>
5340 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5341 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5342 negative error value.</td>
5348 <div class="refsect2">
5349 <a name="gnutls-pkcs7-export"></a><h3>gnutls_pkcs7_export ()</h3>
5350 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_export (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
5351 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
5352 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
5353 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);</pre>
5355 This function will export the pkcs7 structure to DER or PEM format.
5358 If the buffer provided is not long enough to hold the output, then
5359 *<em class="parameter"><code>output_data_size</code></em> is updated and <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a>
5363 If the structure is PEM encoded, it will have a header
5366 <div class="variablelist"><table border="0">
5367 <col align="left" valign="top">
5370 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5371 <td>Holds the pkcs7 structure</td>
5374 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
5375 <td>the format of output params. One of PEM or DER.</td>
5378 <td><p><span class="term"><em class="parameter"><code>output_data</code></em> :</span></p></td>
5379 <td>will contain a structure PEM or DER encoded</td>
5382 <td><p><span class="term"><em class="parameter"><code>output_data_size</code></em> :</span></p></td>
5383 <td>holds the size of output_data (and will be
5384 replaced by the actual size of parameters)</td>
5387 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5388 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5389 negative error value.</td>
5395 <div class="refsect2">
5396 <a name="gnutls-pkcs7-get-crt-count"></a><h3>gnutls_pkcs7_get_crt_count ()</h3>
5397 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_get_crt_count (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>);</pre>
5399 This function will return the number of certifcates in the PKCS7
5400 or RFC2630 certificate set.
5402 <div class="variablelist"><table border="0">
5403 <col align="left" valign="top">
5406 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5407 <td>should contain a <a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> structure</td>
5410 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5411 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5412 negative error value.</td>
5418 <div class="refsect2">
5419 <a name="gnutls-pkcs7-get-crt-raw"></a><h3>gnutls_pkcs7_get_crt_raw ()</h3>
5420 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_get_crt_raw (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
5421 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
5422 <em class="parameter"><code><span class="type">void</span> *certificate</code></em>,
5423 <em class="parameter"><code><span class="type">size_t</span> *certificate_size</code></em>);</pre>
5425 This function will return a certificate of the PKCS7 or RFC2630
5429 After the last certificate has been read
5430 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> will be returned.
5432 <div class="variablelist"><table border="0">
5433 <col align="left" valign="top">
5436 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5437 <td>should contain a gnutls_pkcs7_t structure</td>
5440 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
5441 <td>contains the index of the certificate to extract</td>
5444 <td><p><span class="term"><em class="parameter"><code>certificate</code></em> :</span></p></td>
5445 <td>the contents of the certificate will be copied
5446 there (may be null)</td>
5449 <td><p><span class="term"><em class="parameter"><code>certificate_size</code></em> :</span></p></td>
5450 <td>should hold the size of the certificate</td>
5453 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5454 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5455 negative error value. If the provided buffer is not long enough,
5456 then <em class="parameter"><code>certificate_size</code></em> is updated and
5457 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> is returned.</td>
5463 <div class="refsect2">
5464 <a name="gnutls-pkcs7-set-crt-raw"></a><h3>gnutls_pkcs7_set_crt_raw ()</h3>
5465 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_set_crt_raw (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
5466 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *crt</code></em>);</pre>
5468 This function will add a certificate to the PKCS7 or RFC2630
5471 <div class="variablelist"><table border="0">
5472 <col align="left" valign="top">
5475 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5476 <td>should contain a <a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> structure</td>
5479 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
5480 <td>the DER encoded certificate to be added</td>
5483 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5484 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5485 negative error value.</td>
5491 <div class="refsect2">
5492 <a name="gnutls-pkcs7-set-crt"></a><h3>gnutls_pkcs7_set_crt ()</h3>
5493 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_set_crt (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
5494 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>);</pre>
5496 This function will add a parsed certificate to the PKCS7 or
5497 RFC2630 certificate set. This is a wrapper function over
5498 <a class="link" href="gnutls-x509.html#gnutls-pkcs7-set-crt-raw" title="gnutls_pkcs7_set_crt_raw ()"><code class="function">gnutls_pkcs7_set_crt_raw()</code></a> .
5500 <div class="variablelist"><table border="0">
5501 <col align="left" valign="top">
5504 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5505 <td>should contain a <a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> structure</td>
5508 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
5509 <td>the certificate to be copied.</td>
5512 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5513 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5514 negative error value.</td>
5520 <div class="refsect2">
5521 <a name="gnutls-pkcs7-delete-crt"></a><h3>gnutls_pkcs7_delete_crt ()</h3>
5522 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_delete_crt (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
5523 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>);</pre>
5525 This function will delete a certificate from a PKCS7 or RFC2630
5526 certificate set. Index starts from 0. Returns 0 on success.
5528 <div class="variablelist"><table border="0">
5529 <col align="left" valign="top">
5532 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5533 <td>should contain a gnutls_pkcs7_t structure</td>
5536 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
5537 <td>the index of the certificate to delete</td>
5540 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5541 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5542 negative error value.</td>
5548 <div class="refsect2">
5549 <a name="gnutls-pkcs7-get-crl-raw"></a><h3>gnutls_pkcs7_get_crl_raw ()</h3>
5550 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_get_crl_raw (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
5551 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
5552 <em class="parameter"><code><span class="type">void</span> *crl</code></em>,
5553 <em class="parameter"><code><span class="type">size_t</span> *crl_size</code></em>);</pre>
5555 This function will return a crl of the PKCS7 or RFC2630 crl set.
5557 <div class="variablelist"><table border="0">
5558 <col align="left" valign="top">
5561 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5562 <td>should contain a <a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> structure</td>
5565 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
5566 <td>contains the index of the crl to extract</td>
5569 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
5570 <td>the contents of the crl will be copied there (may be null)</td>
5573 <td><p><span class="term"><em class="parameter"><code>crl_size</code></em> :</span></p></td>
5574 <td>should hold the size of the crl</td>
5577 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5578 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5579 negative error value. If the provided buffer is not long enough,
5580 then <em class="parameter"><code>crl_size</code></em> is updated and <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> is
5581 returned. After the last crl has been read
5582 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> will be returned.</td>
5588 <div class="refsect2">
5589 <a name="gnutls-pkcs7-get-crl-count"></a><h3>gnutls_pkcs7_get_crl_count ()</h3>
5590 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_get_crl_count (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>);</pre>
5592 This function will return the number of certifcates in the PKCS7
5595 <div class="variablelist"><table border="0">
5596 <col align="left" valign="top">
5599 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5600 <td>should contain a gnutls_pkcs7_t structure</td>
5603 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5604 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5605 negative error value.</td>
5611 <div class="refsect2">
5612 <a name="gnutls-pkcs7-set-crl-raw"></a><h3>gnutls_pkcs7_set_crl_raw ()</h3>
5613 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_set_crl_raw (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
5614 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *crl</code></em>);</pre>
5616 This function will add a crl to the PKCS7 or RFC2630 crl set.
5618 <div class="variablelist"><table border="0">
5619 <col align="left" valign="top">
5622 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5623 <td>should contain a <a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> structure</td>
5626 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
5627 <td>the DER encoded crl to be added</td>
5630 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5631 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5632 negative error value.</td>
5638 <div class="refsect2">
5639 <a name="gnutls-pkcs7-set-crl"></a><h3>gnutls_pkcs7_set_crl ()</h3>
5640 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_set_crl (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
5641 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>);</pre>
5643 This function will add a parsed CRL to the PKCS7 or RFC2630 crl
5646 <div class="variablelist"><table border="0">
5647 <col align="left" valign="top">
5650 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5651 <td>should contain a <a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> structure</td>
5654 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
5655 <td>the DER encoded crl to be added</td>
5658 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5659 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5660 negative error value.</td>
5666 <div class="refsect2">
5667 <a name="gnutls-pkcs7-delete-crl"></a><h3>gnutls_pkcs7_delete_crl ()</h3>
5668 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_pkcs7_delete_crl (<em class="parameter"><code><a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> pkcs7</code></em>,
5669 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>);</pre>
5671 This function will delete a crl from a PKCS7 or RFC2630 crl set.
5672 Index starts from 0. Returns 0 on success.
5674 <div class="variablelist"><table border="0">
5675 <col align="left" valign="top">
5678 <td><p><span class="term"><em class="parameter"><code>pkcs7</code></em> :</span></p></td>
5679 <td>should contain a <a class="link" href="gnutls-x509.html#gnutls-pkcs7-t" title="gnutls_pkcs7_t"><span class="type">gnutls_pkcs7_t</span></a> structure</td>
5682 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
5683 <td>the index of the crl to delete</td>
5686 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5687 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5688 negative error value.</td>
5694 <div class="refsect2">
5695 <a name="gnutls-certificate-verify-flags"></a><h3>enum gnutls_certificate_verify_flags</h3>
5696 <pre class="programlisting">typedef enum {
5697 GNUTLS_VERIFY_DISABLE_CA_SIGN = 1,
5698 GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT = 2,
5699 GNUTLS_VERIFY_DO_NOT_ALLOW_SAME = 4,
5700 GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT = 8,
5701 GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD2 = 16,
5702 GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD5 = 32,
5703 GNUTLS_VERIFY_DISABLE_TIME_CHECKS = 64,
5704 GNUTLS_VERIFY_DISABLE_TRUSTED_TIME_CHECKS = 128,
5705 GNUTLS_VERIFY_DO_NOT_ALLOW_X509_V1_CA_CRT = 256
5706 } gnutls_certificate_verify_flags;
5709 Enumeration of different certificate verify flags.
5711 <div class="variablelist"><table border="0">
5712 <col align="left" valign="top">
5715 <td><p><a name="GNUTLS-VERIFY-DISABLE-CA-SIGN:CAPS"></a><span class="term"><code class="literal">GNUTLS_VERIFY_DISABLE_CA_SIGN</code></span></p></td>
5716 <td>If set a signer does not have to be
5717 a certificate authority. This flag should normaly be disabled,
5718 unless you know what this means.
5722 <td><p><a name="GNUTLS-VERIFY-ALLOW-X509-V1-CA-CRT:CAPS"></a><span class="term"><code class="literal">GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT</code></span></p></td>
5723 <td>Allow trusted CA
5724 certificates that have version 1. This is the default.
5728 <td><p><a name="GNUTLS-VERIFY-DO-NOT-ALLOW-SAME:CAPS"></a><span class="term"><code class="literal">GNUTLS_VERIFY_DO_NOT_ALLOW_SAME</code></span></p></td>
5729 <td>If a certificate is not signed by
5730 anyone trusted but exists in the trusted CA list do not treat it
5735 <td><p><a name="GNUTLS-VERIFY-ALLOW-ANY-X509-V1-CA-CRT:CAPS"></a><span class="term"><code class="literal">GNUTLS_VERIFY_ALLOW_ANY_X509_V1_CA_CRT</code></span></p></td>
5736 <td>Allow CA certificates that
5737 have version 1 (both root and intermediate). This might be
5738 dangerous since those haven't the basicConstraints
5739 extension. Must be used in combination with
5740 <a class="link" href="gnutls-x509.html#GNUTLS-VERIFY-ALLOW-X509-V1-CA-CRT:CAPS"><code class="literal">GNUTLS_VERIFY_ALLOW_X509_V1_CA_CRT</code></a>.
5744 <td><p><a name="GNUTLS-VERIFY-ALLOW-SIGN-RSA-MD2:CAPS"></a><span class="term"><code class="literal">GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD2</code></span></p></td>
5745 <td>Allow certificates to be signed
5746 using the broken MD2 algorithm.
5750 <td><p><a name="GNUTLS-VERIFY-ALLOW-SIGN-RSA-MD5:CAPS"></a><span class="term"><code class="literal">GNUTLS_VERIFY_ALLOW_SIGN_RSA_MD5</code></span></p></td>
5751 <td>Allow certificates to be signed
5752 using the broken MD5 algorithm.
5756 <td><p><a name="GNUTLS-VERIFY-DISABLE-TIME-CHECKS:CAPS"></a><span class="term"><code class="literal">GNUTLS_VERIFY_DISABLE_TIME_CHECKS</code></span></p></td>
5757 <td>Disable checking of activation
5758 and expiration validity periods of certificate chains. Don't set
5759 this unless you understand the security implications.
5763 <td><p><a name="GNUTLS-VERIFY-DISABLE-TRUSTED-TIME-CHECKS:CAPS"></a><span class="term"><code class="literal">GNUTLS_VERIFY_DISABLE_TRUSTED_TIME_CHECKS</code></span></p></td>
5764 <td>If set a signer in the trusted
5765 list is never checked for expiration or activation.
5769 <td><p><a name="GNUTLS-VERIFY-DO-NOT-ALLOW-X509-V1-CA-CRT:CAPS"></a><span class="term"><code class="literal">GNUTLS_VERIFY_DO_NOT_ALLOW_X509_V1_CA_CRT</code></span></p></td>
5770 <td>Do not allow trusted CA
5771 certificates that have version 1. This option is to be used
5772 to deprecate all V1 certificates.
5779 <div class="refsect2">
5780 <a name="gnutls-x509-crt-check-issuer"></a><h3>gnutls_x509_crt_check_issuer ()</h3>
5781 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_check_issuer (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
5782 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> issuer</code></em>);</pre>
5784 This function will check if the given certificate was issued by the
5787 <div class="variablelist"><table border="0">
5788 <col align="left" valign="top">
5791 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
5792 <td>is the certificate to be checked</td>
5795 <td><p><span class="term"><em class="parameter"><code>issuer</code></em> :</span></p></td>
5796 <td>is the certificate of a possible issuer</td>
5799 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5800 <td>It will return true (1) if the given certificate is issued
5801 by the given issuer, and false (0) if not. A negative value is
5802 returned in case of an error.</td>
5808 <div class="refsect2">
5809 <a name="gnutls-x509-crt-list-verify"></a><h3>gnutls_x509_crt_list_verify ()</h3>
5810 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_list_verify (<em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *cert_list</code></em>,
5811 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> cert_list_length</code></em>,
5812 <em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *CA_list</code></em>,
5813 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> CA_list_length</code></em>,
5814 <em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> *CRL_list</code></em>,
5815 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> CRL_list_length</code></em>,
5816 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
5817 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *verify</code></em>);</pre>
5819 This function will try to verify the given certificate list and
5820 return its status. If no flags are specified (0), this function
5821 will use the basicConstraints (2.5.29.19) PKIX extension. This
5822 means that only a certificate authority is allowed to sign a
5826 You must also check the peer's name in order to check if the verified
5827 certificate belongs to the actual peer.
5830 The certificate verification output will be put in <em class="parameter"><code>verify</code></em> and will
5831 be one or more of the gnutls_certificate_status_t enumerated
5832 elements bitwise or'd. For a more detailed verification status use
5833 <a class="link" href="gnutls-x509.html#gnutls-x509-crt-verify" title="gnutls_x509_crt_verify ()"><code class="function">gnutls_x509_crt_verify()</code></a> per list element.
5836 GNUTLS_CERT_INVALID: the certificate chain is not valid.
5839 GNUTLS_CERT_REVOKED: a certificate in the chain has been revoked.
5841 <div class="variablelist"><table border="0">
5842 <col align="left" valign="top">
5845 <td><p><span class="term"><em class="parameter"><code>cert_list</code></em> :</span></p></td>
5846 <td>is the certificate list to be verified</td>
5849 <td><p><span class="term"><em class="parameter"><code>cert_list_length</code></em> :</span></p></td>
5850 <td>holds the number of certificate in cert_list</td>
5853 <td><p><span class="term"><em class="parameter"><code>CA_list</code></em> :</span></p></td>
5854 <td>is the CA list which will be used in verification</td>
5857 <td><p><span class="term"><em class="parameter"><code>CA_list_length</code></em> :</span></p></td>
5858 <td>holds the number of CA certificate in CA_list</td>
5861 <td><p><span class="term"><em class="parameter"><code>CRL_list</code></em> :</span></p></td>
5862 <td>holds a list of CRLs.</td>
5865 <td><p><span class="term"><em class="parameter"><code>CRL_list_length</code></em> :</span></p></td>
5866 <td>the length of CRL list.</td>
5869 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
5870 <td>Flags that may be used to change the verification algorithm. Use OR of the gnutls_certificate_verify_flags enumerations.</td>
5873 <td><p><span class="term"><em class="parameter"><code>verify</code></em> :</span></p></td>
5874 <td>will hold the certificate verification output.</td>
5877 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5878 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5879 negative error value.</td>
5885 <div class="refsect2">
5886 <a name="gnutls-x509-crt-verify"></a><h3>gnutls_x509_crt_verify ()</h3>
5887 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_verify (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
5888 <em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *CA_list</code></em>,
5889 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> CA_list_length</code></em>,
5890 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
5891 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *verify</code></em>);</pre>
5893 This function will try to verify the given certificate and return
5896 <div class="variablelist"><table border="0">
5897 <col align="left" valign="top">
5900 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
5901 <td>is the certificate to be verified</td>
5904 <td><p><span class="term"><em class="parameter"><code>CA_list</code></em> :</span></p></td>
5905 <td>is one certificate that is considered to be trusted one</td>
5908 <td><p><span class="term"><em class="parameter"><code>CA_list_length</code></em> :</span></p></td>
5909 <td>holds the number of CA certificate in CA_list</td>
5912 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
5913 <td>Flags that may be used to change the verification algorithm. Use OR of the gnutls_certificate_verify_flags enumerations.</td>
5916 <td><p><span class="term"><em class="parameter"><code>verify</code></em> :</span></p></td>
5917 <td>will hold the certificate verification output.</td>
5920 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5921 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5922 negative error value.</td>
5928 <div class="refsect2">
5929 <a name="gnutls-x509-crl-verify"></a><h3>gnutls_x509_crl_verify ()</h3>
5930 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crl_verify (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> crl</code></em>,
5931 <em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> *CA_list</code></em>,
5932 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> CA_list_length</code></em>,
5933 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
5934 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *verify</code></em>);</pre>
5936 This function will try to verify the given crl and return its status.
5937 See <a class="link" href="gnutls-x509.html#gnutls-x509-crt-list-verify" title="gnutls_x509_crt_list_verify ()"><code class="function">gnutls_x509_crt_list_verify()</code></a> for a detailed description of
5940 <div class="variablelist"><table border="0">
5941 <col align="left" valign="top">
5944 <td><p><span class="term"><em class="parameter"><code>crl</code></em> :</span></p></td>
5945 <td>is the crl to be verified</td>
5948 <td><p><span class="term"><em class="parameter"><code>CA_list</code></em> :</span></p></td>
5949 <td>is a certificate list that is considered to be trusted one</td>
5952 <td><p><span class="term"><em class="parameter"><code>CA_list_length</code></em> :</span></p></td>
5953 <td>holds the number of CA certificates in CA_list</td>
5956 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
5957 <td>Flags that may be used to change the verification algorithm. Use OR of the gnutls_certificate_verify_flags enumerations.</td>
5960 <td><p><span class="term"><em class="parameter"><code>verify</code></em> :</span></p></td>
5961 <td>will hold the crl verification output.</td>
5964 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5965 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
5966 negative error value.</td>
5972 <div class="refsect2">
5973 <a name="gnutls-x509-crt-check-revocation"></a><h3>gnutls_x509_crt_check_revocation ()</h3>
5974 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_check_revocation (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
5975 <em class="parameter"><code>const <a class="link" href="gnutls-gnutls.html#gnutls-x509-crl-t" title="gnutls_x509_crl_t"><span class="type">gnutls_x509_crl_t</span></a> *crl_list</code></em>,
5976 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> crl_list_length</code></em>);</pre>
5978 This function will return check if the given certificate is
5979 revoked. It is assumed that the CRLs have been verified before.
5981 <div class="variablelist"><table border="0">
5982 <col align="left" valign="top">
5985 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
5986 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
5989 <td><p><span class="term"><em class="parameter"><code>crl_list</code></em> :</span></p></td>
5990 <td>should contain a list of gnutls_x509_crl_t structures</td>
5993 <td><p><span class="term"><em class="parameter"><code>crl_list_length</code></em> :</span></p></td>
5994 <td>the length of the crl_list</td>
5997 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
5998 <td>0 if the certificate is NOT revoked, and 1 if it is. A
5999 negative value is returned on error.</td>
6005 <div class="refsect2">
6006 <a name="gnutls-x509-crt-get-fingerprint"></a><h3>gnutls_x509_crt_get_fingerprint ()</h3>
6007 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_fingerprint (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
6008 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-digest-algorithm-t" title="enum gnutls_digest_algorithm_t"><span class="type">gnutls_digest_algorithm_t</span></a> algo</code></em>,
6009 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
6010 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
6012 This function will calculate and copy the certificate's fingerprint
6013 in the provided buffer.
6016 If the buffer is null then only the size will be filled.
6018 <div class="variablelist"><table border="0">
6019 <col align="left" valign="top">
6022 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
6023 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
6026 <td><p><span class="term"><em class="parameter"><code>algo</code></em> :</span></p></td>
6027 <td>is a digest algorithm</td>
6030 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
6031 <td>a pointer to a structure to hold the fingerprint (may be null)</td>
6034 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
6035 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
6039 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6041 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is
6042 not long enough, and in that case the *sizeof_buf will be updated
6043 with the required size. On success 0 is returned.</td>
6049 <div class="refsect2">
6050 <a name="gnutls-x509-crt-get-key-purpose-oid"></a><h3>gnutls_x509_crt_get_key_purpose_oid ()</h3>
6051 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_get_key_purpose_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
6052 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
6053 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
6054 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>,
6055 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
6057 This function will extract the key purpose OIDs of the Certificate
6058 specified by the given index. These are stored in the Extended Key
6059 Usage extension (2.5.29.37) See the GNUTLS_KP_* definitions for
6060 human readable names.
6063 If <em class="parameter"><code>oid</code></em> is null then only the size will be filled.
6065 <div class="variablelist"><table border="0">
6066 <col align="left" valign="top">
6069 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
6070 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> structure</td>
6073 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
6074 <td>This specifies which OID to return. Use zero to get the first one.</td>
6077 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
6078 <td>a pointer to a buffer to hold the OID (may be null)</td>
6081 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
6082 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
6086 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
6087 <td>output flag to indicate criticality of extension</td>
6090 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6092 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is
6093 not long enough, and in that case the *sizeof_oid will be updated
6094 with the required size. On success 0 is returned.</td>
6100 <div class="refsect2">
6101 <a name="gnutls-x509-crt-set-key-purpose-oid"></a><h3>gnutls_x509_crt_set_key_purpose_oid ()</h3>
6102 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_key_purpose_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> cert</code></em>,
6103 <em class="parameter"><code>const <span class="type">void</span> *oid</code></em>,
6104 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> critical</code></em>);</pre>
6106 This function will set the key purpose OIDs of the Certificate.
6107 These are stored in the Extended Key Usage extension (2.5.29.37)
6108 See the GNUTLS_KP_* definitions for human readable names.
6111 Subsequent calls to this function will append OIDs to the OID list.
6113 <div class="variablelist"><table border="0">
6114 <col align="left" valign="top">
6117 <td><p><span class="term"><em class="parameter"><code>cert</code></em> :</span></p></td>
6118 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
6122 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
6123 <td>a pointer to a null terminated string that holds the OID</td>
6126 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
6127 <td>Whether this extension will be critical or not</td>
6130 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6131 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> (zero) is returned,
6132 otherwise an error code is returned.</td>
6138 <div class="refsect2">
6139 <a name="gnutls-pkcs-encrypt-flags-t"></a><h3>enum gnutls_pkcs_encrypt_flags_t</h3>
6140 <pre class="programlisting">typedef enum {
6141 GNUTLS_PKCS_PLAIN = 1,
6142 GNUTLS_PKCS8_PLAIN = GNUTLS_PKCS_PLAIN,
6143 GNUTLS_PKCS_USE_PKCS12_3DES = 2,
6144 GNUTLS_PKCS8_USE_PKCS12_3DES = GNUTLS_PKCS_USE_PKCS12_3DES,
6145 GNUTLS_PKCS_USE_PKCS12_ARCFOUR = 4,
6146 GNUTLS_PKCS8_USE_PKCS12_ARCFOUR = GNUTLS_PKCS_USE_PKCS12_ARCFOUR,
6147 GNUTLS_PKCS_USE_PKCS12_RC2_40 = 8,
6148 GNUTLS_PKCS8_USE_PKCS12_RC2_40 = GNUTLS_PKCS_USE_PKCS12_RC2_40,
6149 GNUTLS_PKCS_USE_PBES2_3DES = 16,
6150 GNUTLS_PKCS_USE_PBES2_AES_128 = 32,
6151 GNUTLS_PKCS_USE_PBES2_AES_192 = 64,
6152 GNUTLS_PKCS_USE_PBES2_AES_256 = 128
6153 } gnutls_pkcs_encrypt_flags_t;
6156 Enumeration of different PKCS encryption flags.
6158 <div class="variablelist"><table border="0">
6159 <col align="left" valign="top">
6162 <td><p><a name="GNUTLS-PKCS-PLAIN:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS_PLAIN</code></span></p></td>
6163 <td>Unencrypted private key.
6167 <td><p><a name="GNUTLS-PKCS8-PLAIN:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS8_PLAIN</code></span></p></td>
6168 <td>Same as <a class="link" href="gnutls-x509.html#GNUTLS-PKCS-PLAIN:CAPS"><code class="literal">GNUTLS_PKCS_PLAIN</code></a>.
6172 <td><p><a name="GNUTLS-PKCS-USE-PKCS12-3DES:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS_USE_PKCS12_3DES</code></span></p></td>
6177 <td><p><a name="GNUTLS-PKCS8-USE-PKCS12-3DES:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS8_USE_PKCS12_3DES</code></span></p></td>
6178 <td>Same as <a class="link" href="gnutls-x509.html#GNUTLS-PKCS-USE-PKCS12-3DES:CAPS"><code class="literal">GNUTLS_PKCS_USE_PKCS12_3DES</code></a>.
6182 <td><p><a name="GNUTLS-PKCS-USE-PKCS12-ARCFOUR:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS_USE_PKCS12_ARCFOUR</code></span></p></td>
6183 <td>PKCS-12 ARCFOUR.
6187 <td><p><a name="GNUTLS-PKCS8-USE-PKCS12-ARCFOUR:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS8_USE_PKCS12_ARCFOUR</code></span></p></td>
6188 <td>Same as <a class="link" href="gnutls-x509.html#GNUTLS-PKCS-USE-PKCS12-ARCFOUR:CAPS"><code class="literal">GNUTLS_PKCS_USE_PKCS12_ARCFOUR</code></a>.
6192 <td><p><a name="GNUTLS-PKCS-USE-PKCS12-RC2-40:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS_USE_PKCS12_RC2_40</code></span></p></td>
6197 <td><p><a name="GNUTLS-PKCS8-USE-PKCS12-RC2-40:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS8_USE_PKCS12_RC2_40</code></span></p></td>
6198 <td>Same as <a class="link" href="gnutls-x509.html#GNUTLS-PKCS-USE-PKCS12-RC2-40:CAPS"><code class="literal">GNUTLS_PKCS_USE_PKCS12_RC2_40</code></a>.
6202 <td><p><a name="GNUTLS-PKCS-USE-PBES2-3DES:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS_USE_PBES2_3DES</code></span></p></td>
6207 <td><p><a name="GNUTLS-PKCS-USE-PBES2-AES-128:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS_USE_PBES2_AES_128</code></span></p></td>
6212 <td><p><a name="GNUTLS-PKCS-USE-PBES2-AES-192:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS_USE_PBES2_AES_192</code></span></p></td>
6217 <td><p><a name="GNUTLS-PKCS-USE-PBES2-AES-256:CAPS"></a><span class="term"><code class="literal">GNUTLS_PKCS_USE_PBES2_AES_256</code></span></p></td>
6225 <div class="refsect2">
6226 <a name="gnutls-x509-privkey-init"></a><h3>gnutls_x509_privkey_init ()</h3>
6227 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_init (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> *key</code></em>);</pre>
6229 This function will initialize an private key structure.
6231 <div class="variablelist"><table border="0">
6232 <col align="left" valign="top">
6235 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6236 <td>The structure to be initialized</td>
6239 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6240 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6241 negative error value.</td>
6247 <div class="refsect2">
6248 <a name="gnutls-x509-privkey-deinit"></a><h3>gnutls_x509_privkey_deinit ()</h3>
6249 <pre class="programlisting"><span class="returnvalue">void</span> gnutls_x509_privkey_deinit (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);</pre>
6251 This function will deinitialize a private key structure.
6253 <div class="variablelist"><table border="0">
6254 <col align="left" valign="top">
6256 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6257 <td>The structure to be deinitialized</td>
6262 <div class="refsect2">
6263 <a name="gnutls-x509-privkey-sec-param"></a><h3>gnutls_x509_privkey_sec_param ()</h3>
6264 <pre class="programlisting"><a class="link" href="gnutls-gnutls.html#gnutls-sec-param-t" title="enum gnutls_sec_param_t"><span class="returnvalue">gnutls_sec_param_t</span></a> gnutls_x509_privkey_sec_param (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);</pre>
6266 This function will return the security parameter appropriate with
6269 <div class="variablelist"><table border="0">
6270 <col align="left" valign="top">
6273 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6274 <td>a key structure</td>
6277 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6278 <td>On success, a valid security parameter is returned otherwise
6279 <a class="link" href="gnutls-gnutls.html#GNUTLS-SEC-PARAM-UNKNOWN:CAPS"><code class="literal">GNUTLS_SEC_PARAM_UNKNOWN</code></a> is returned.</td>
6285 <div class="refsect2">
6286 <a name="gnutls-x509-privkey-cpy"></a><h3>gnutls_x509_privkey_cpy ()</h3>
6287 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_cpy (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> dst</code></em>,
6288 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> src</code></em>);</pre>
6290 This function will copy a private key from source to destination
6291 key. Destination has to be initialized.
6293 <div class="variablelist"><table border="0">
6294 <col align="left" valign="top">
6297 <td><p><span class="term"><em class="parameter"><code>dst</code></em> :</span></p></td>
6298 <td>The destination key, which should be initialized.</td>
6301 <td><p><span class="term"><em class="parameter"><code>src</code></em> :</span></p></td>
6302 <td>The source key</td>
6305 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6306 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6307 negative error value.</td>
6313 <div class="refsect2">
6314 <a name="gnutls-x509-privkey-import"></a><h3>gnutls_x509_privkey_import ()</h3>
6315 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_import (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6316 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
6317 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>);</pre>
6319 This function will convert the given DER or PEM encoded key to the
6320 native <a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> format. The output will be stored in
6321 <em class="parameter"><code>key</code></em> .
6324 If the key is PEM encoded it should have a header of "RSA PRIVATE
6325 KEY", or "DSA PRIVATE KEY".
6327 <div class="variablelist"><table border="0">
6328 <col align="left" valign="top">
6331 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6332 <td>The structure to store the parsed key</td>
6335 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
6336 <td>The DER or PEM encoded certificate.</td>
6339 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
6340 <td>One of DER or PEM</td>
6343 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6344 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6345 negative error value.</td>
6351 <div class="refsect2">
6352 <a name="gnutls-x509-privkey-import-pkcs8"></a><h3>gnutls_x509_privkey_import_pkcs8 ()</h3>
6353 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_import_pkcs8 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6354 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
6355 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
6356 <em class="parameter"><code>const <span class="type">char</span> *password</code></em>,
6357 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);</pre>
6359 This function will convert the given DER or PEM encoded PKCS8 2.0
6360 encrypted key to the native gnutls_x509_privkey_t format. The
6361 output will be stored in <em class="parameter"><code>key</code></em>. Both RSA and DSA keys can be
6362 imported, and flags can only be used to indicate an unencrypted
6366 The <em class="parameter"><code>password</code></em> can be either ASCII or UTF-8 in the default PBES2
6367 encryption schemas, or ASCII for the PKCS12 schemas.
6370 If the Certificate is PEM encoded it should have a header of
6371 "ENCRYPTED PRIVATE KEY", or "PRIVATE KEY". You only need to
6372 specify the flags if the key is DER encoded, since in that case
6373 the encryption status cannot be auto-detected.
6375 <div class="variablelist"><table border="0">
6376 <col align="left" valign="top">
6379 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6380 <td>The structure to store the parsed key</td>
6383 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
6384 <td>The DER or PEM encoded key.</td>
6387 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
6388 <td>One of DER or PEM</td>
6391 <td><p><span class="term"><em class="parameter"><code>password</code></em> :</span></p></td>
6392 <td>the password to decrypt the key (if it is encrypted).</td>
6395 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
6396 <td>0 if encrypted or GNUTLS_PKCS_PLAIN if not encrypted.</td>
6399 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6400 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6401 negative error value.</td>
6407 <div class="refsect2">
6408 <a name="gnutls-x509-privkey-import-rsa-raw"></a><h3>gnutls_x509_privkey_import_rsa_raw ()</h3>
6409 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_import_rsa_raw (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6410 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *m</code></em>,
6411 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *e</code></em>,
6412 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *d</code></em>,
6413 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *p</code></em>,
6414 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *q</code></em>,
6415 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *u</code></em>);</pre>
6417 This function will convert the given RSA raw parameters to the
6418 native <a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> format. The output will be stored in
6419 <em class="parameter"><code>key</code></em>.
6421 <div class="variablelist"><table border="0">
6422 <col align="left" valign="top">
6425 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6426 <td>The structure to store the parsed key</td>
6429 <td><p><span class="term"><em class="parameter"><code>m</code></em> :</span></p></td>
6430 <td>holds the modulus</td>
6433 <td><p><span class="term"><em class="parameter"><code>e</code></em> :</span></p></td>
6434 <td>holds the public exponent</td>
6437 <td><p><span class="term"><em class="parameter"><code>d</code></em> :</span></p></td>
6438 <td>holds the private exponent</td>
6441 <td><p><span class="term"><em class="parameter"><code>p</code></em> :</span></p></td>
6442 <td>holds the first prime (p)</td>
6445 <td><p><span class="term"><em class="parameter"><code>q</code></em> :</span></p></td>
6446 <td>holds the second prime (q)</td>
6449 <td><p><span class="term"><em class="parameter"><code>u</code></em> :</span></p></td>
6450 <td>holds the coefficient</td>
6453 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6454 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6455 negative error value.</td>
6461 <div class="refsect2">
6462 <a name="gnutls-x509-privkey-import-rsa-raw2"></a><h3>gnutls_x509_privkey_import_rsa_raw2 ()</h3>
6463 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_import_rsa_raw2 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6464 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *m</code></em>,
6465 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *e</code></em>,
6466 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *d</code></em>,
6467 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *p</code></em>,
6468 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *q</code></em>,
6469 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *u</code></em>,
6470 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *e1</code></em>,
6471 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *e2</code></em>);</pre>
6473 This function will convert the given RSA raw parameters to the
6474 native <a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> format. The output will be stored in
6475 <em class="parameter"><code>key</code></em>.
6477 <div class="variablelist"><table border="0">
6478 <col align="left" valign="top">
6481 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6482 <td>The structure to store the parsed key</td>
6485 <td><p><span class="term"><em class="parameter"><code>m</code></em> :</span></p></td>
6486 <td>holds the modulus</td>
6489 <td><p><span class="term"><em class="parameter"><code>e</code></em> :</span></p></td>
6490 <td>holds the public exponent</td>
6493 <td><p><span class="term"><em class="parameter"><code>d</code></em> :</span></p></td>
6494 <td>holds the private exponent</td>
6497 <td><p><span class="term"><em class="parameter"><code>p</code></em> :</span></p></td>
6498 <td>holds the first prime (p)</td>
6501 <td><p><span class="term"><em class="parameter"><code>q</code></em> :</span></p></td>
6502 <td>holds the second prime (q)</td>
6505 <td><p><span class="term"><em class="parameter"><code>u</code></em> :</span></p></td>
6506 <td>holds the coefficient</td>
6509 <td><p><span class="term"><em class="parameter"><code>e1</code></em> :</span></p></td>
6510 <td>holds e1 = d mod (p-1)</td>
6513 <td><p><span class="term"><em class="parameter"><code>e2</code></em> :</span></p></td>
6514 <td>holds e2 = d mod (q-1)</td>
6517 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6518 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6519 negative error value.</td>
6525 <div class="refsect2">
6526 <a name="gnutls-x509-privkey-fix"></a><h3>gnutls_x509_privkey_fix ()</h3>
6527 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_fix (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);</pre>
6529 This function will recalculate the secondary parameters in a key.
6530 In RSA keys, this can be the coefficient and exponent1,2.
6532 <div class="variablelist"><table border="0">
6533 <col align="left" valign="top">
6536 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6537 <td>Holds the key</td>
6540 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6541 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6542 negative error value.</td>
6548 <div class="refsect2">
6549 <a name="gnutls-x509-privkey-export-dsa-raw"></a><h3>gnutls_x509_privkey_export_dsa_raw ()</h3>
6550 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_export_dsa_raw (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6551 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *p</code></em>,
6552 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *q</code></em>,
6553 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *g</code></em>,
6554 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *y</code></em>,
6555 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *x</code></em>);</pre>
6557 This function will export the DSA private key's parameters found
6558 in the given structure. The new parameters will be allocated using
6559 <a class="link" href="gnutls-gnutls.html#gnutls-malloc" title="gnutls_malloc"><code class="function">gnutls_malloc()</code></a> and will be stored in the appropriate datum.
6561 <div class="variablelist"><table border="0">
6562 <col align="left" valign="top">
6565 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6566 <td>a structure that holds the DSA parameters</td>
6569 <td><p><span class="term"><em class="parameter"><code>p</code></em> :</span></p></td>
6570 <td>will hold the p</td>
6573 <td><p><span class="term"><em class="parameter"><code>q</code></em> :</span></p></td>
6574 <td>will hold the q</td>
6577 <td><p><span class="term"><em class="parameter"><code>g</code></em> :</span></p></td>
6578 <td>will hold the g</td>
6581 <td><p><span class="term"><em class="parameter"><code>y</code></em> :</span></p></td>
6582 <td>will hold the y</td>
6585 <td><p><span class="term"><em class="parameter"><code>x</code></em> :</span></p></td>
6586 <td>will hold the x</td>
6589 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6590 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6591 negative error value.</td>
6597 <div class="refsect2">
6598 <a name="gnutls-x509-privkey-import-dsa-raw"></a><h3>gnutls_x509_privkey_import_dsa_raw ()</h3>
6599 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_import_dsa_raw (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6600 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *p</code></em>,
6601 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *q</code></em>,
6602 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *g</code></em>,
6603 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *y</code></em>,
6604 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *x</code></em>);</pre>
6606 This function will convert the given DSA raw parameters to the
6607 native <a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> format. The output will be stored
6608 in <em class="parameter"><code>key</code></em>.
6610 <div class="variablelist"><table border="0">
6611 <col align="left" valign="top">
6614 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6615 <td>The structure to store the parsed key</td>
6618 <td><p><span class="term"><em class="parameter"><code>p</code></em> :</span></p></td>
6619 <td>holds the p</td>
6622 <td><p><span class="term"><em class="parameter"><code>q</code></em> :</span></p></td>
6623 <td>holds the q</td>
6626 <td><p><span class="term"><em class="parameter"><code>g</code></em> :</span></p></td>
6627 <td>holds the g</td>
6630 <td><p><span class="term"><em class="parameter"><code>y</code></em> :</span></p></td>
6631 <td>holds the y</td>
6634 <td><p><span class="term"><em class="parameter"><code>x</code></em> :</span></p></td>
6635 <td>holds the x</td>
6638 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6639 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6640 negative error value.</td>
6646 <div class="refsect2">
6647 <a name="gnutls-x509-privkey-get-pk-algorithm"></a><h3>gnutls_x509_privkey_get_pk_algorithm ()</h3>
6648 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_get_pk_algorithm
6649 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);</pre>
6651 This function will return the public key algorithm of a private
6654 <div class="variablelist"><table border="0">
6655 <col align="left" valign="top">
6658 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6659 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> structure</td>
6662 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6663 <td>a member of the <a class="link" href="gnutls-gnutls.html#gnutls-pk-algorithm-t" title="enum gnutls_pk_algorithm_t"><span class="type">gnutls_pk_algorithm_t</span></a> enumeration on
6664 success, or a negative value on error.</td>
6670 <div class="refsect2">
6671 <a name="gnutls-x509-privkey-get-key-id"></a><h3>gnutls_x509_privkey_get_key_id ()</h3>
6672 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_get_key_id (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6673 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
6674 <em class="parameter"><code>unsigned <span class="type">char</span> *output_data</code></em>,
6675 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);</pre>
6677 This function will return a unique ID the depends on the public key
6678 parameters. This ID can be used in checking whether a certificate
6679 corresponds to the given key.
6682 If the buffer provided is not long enough to hold the output, then
6683 *<em class="parameter"><code>output_data_size</code></em> is updated and <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> will
6684 be returned. The output will normally be a SHA-1 hash output,
6687 <div class="variablelist"><table border="0">
6688 <col align="left" valign="top">
6691 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6692 <td>Holds the key</td>
6695 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
6696 <td>should be 0 for now</td>
6699 <td><p><span class="term"><em class="parameter"><code>output_data</code></em> :</span></p></td>
6700 <td>will contain the key ID</td>
6703 <td><p><span class="term"><em class="parameter"><code>output_data_size</code></em> :</span></p></td>
6704 <td>holds the size of output_data (and will be
6705 replaced by the actual size of parameters)</td>
6708 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6709 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6710 negative error value.</td>
6716 <div class="refsect2">
6717 <a name="gnutls-x509-privkey-generate"></a><h3>gnutls_x509_privkey_generate ()</h3>
6718 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_generate (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6719 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-pk-algorithm-t" title="enum gnutls_pk_algorithm_t"><span class="type">gnutls_pk_algorithm_t</span></a> algo</code></em>,
6720 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> bits</code></em>,
6721 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);</pre>
6723 This function will generate a random private key. Note that this
6724 function must be called on an empty private key.
6727 Do not set the number of bits directly, use <a class="link" href="gnutls-gnutls.html#gnutls-sec-param-to-pk-bits" title="gnutls_sec_param_to_pk_bits ()"><code class="function">gnutls_sec_param_to_pk_bits()</code></a>.
6729 <div class="variablelist"><table border="0">
6730 <col align="left" valign="top">
6733 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6734 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> structure</td>
6737 <td><p><span class="term"><em class="parameter"><code>algo</code></em> :</span></p></td>
6738 <td>is one of RSA or DSA.</td>
6741 <td><p><span class="term"><em class="parameter"><code>bits</code></em> :</span></p></td>
6742 <td>the size of the modulus</td>
6745 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
6746 <td>unused for now. Must be 0.</td>
6749 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6750 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6751 negative error value.</td>
6757 <div class="refsect2">
6758 <a name="gnutls-x509-privkey-export"></a><h3>gnutls_x509_privkey_export ()</h3>
6759 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_export (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6760 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
6761 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
6762 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);</pre>
6764 This function will export the private key to a PKCS1 structure for
6765 RSA keys, or an integer sequence for DSA keys. The DSA keys are in
6766 the same format with the parameters used by openssl.
6769 If the buffer provided is not long enough to hold the output, then
6770 *<em class="parameter"><code>output_data_size</code></em> is updated and <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a>
6774 If the structure is PEM encoded, it will have a header
6775 of "BEGIN RSA PRIVATE KEY".
6777 <div class="variablelist"><table border="0">
6778 <col align="left" valign="top">
6781 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6782 <td>Holds the key</td>
6785 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
6786 <td>the format of output params. One of PEM or DER.</td>
6789 <td><p><span class="term"><em class="parameter"><code>output_data</code></em> :</span></p></td>
6790 <td>will contain a private key PEM or DER encoded</td>
6793 <td><p><span class="term"><em class="parameter"><code>output_data_size</code></em> :</span></p></td>
6794 <td>holds the size of output_data (and will be
6795 replaced by the actual size of parameters)</td>
6798 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6799 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6800 negative error value.</td>
6806 <div class="refsect2">
6807 <a name="gnutls-x509-privkey-export-pkcs8"></a><h3>gnutls_x509_privkey_export_pkcs8 ()</h3>
6808 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_export_pkcs8 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6809 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
6810 <em class="parameter"><code>const <span class="type">char</span> *password</code></em>,
6811 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
6812 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
6813 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);</pre>
6815 This function will export the private key to a PKCS8 structure.
6816 Both RSA and DSA keys can be exported. For DSA keys we use
6817 PKCS <span class="type">11</span> definitions. If the flags do not specify the encryption
6818 cipher, then the default 3DES (PBES2) will be used.
6821 The <em class="parameter"><code>password</code></em> can be either ASCII or UTF-8 in the default PBES2
6822 encryption schemas, or ASCII for the PKCS12 schemas.
6825 If the buffer provided is not long enough to hold the output, then
6826 *output_data_size is updated and GNUTLS_E_SHORT_MEMORY_BUFFER will
6830 If the structure is PEM encoded, it will have a header
6831 of "BEGIN ENCRYPTED PRIVATE KEY" or "BEGIN PRIVATE KEY" if
6832 encryption is not used.
6834 <div class="variablelist"><table border="0">
6835 <col align="left" valign="top">
6838 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6839 <td>Holds the key</td>
6842 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
6843 <td>the format of output params. One of PEM or DER.</td>
6846 <td><p><span class="term"><em class="parameter"><code>password</code></em> :</span></p></td>
6847 <td>the password that will be used to encrypt the key.</td>
6850 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
6851 <td>an ORed sequence of gnutls_pkcs_encrypt_flags_t</td>
6854 <td><p><span class="term"><em class="parameter"><code>output_data</code></em> :</span></p></td>
6855 <td>will contain a private key PEM or DER encoded</td>
6858 <td><p><span class="term"><em class="parameter"><code>output_data_size</code></em> :</span></p></td>
6859 <td>holds the size of output_data (and will be
6860 replaced by the actual size of parameters)</td>
6863 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6864 <td>In case of failure a negative value will be
6865 returned, and 0 on success.</td>
6871 <div class="refsect2">
6872 <a name="gnutls-x509-privkey-export-rsa-raw2"></a><h3>gnutls_x509_privkey_export_rsa_raw2 ()</h3>
6873 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_export_rsa_raw2 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6874 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *m</code></em>,
6875 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e</code></em>,
6876 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *d</code></em>,
6877 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *p</code></em>,
6878 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *q</code></em>,
6879 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *u</code></em>,
6880 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e1</code></em>,
6881 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e2</code></em>);</pre>
6883 This function will export the RSA private key's parameters found
6884 in the given structure. The new parameters will be allocated using
6885 <a class="link" href="gnutls-gnutls.html#gnutls-malloc" title="gnutls_malloc"><code class="function">gnutls_malloc()</code></a> and will be stored in the appropriate datum.
6887 <div class="variablelist"><table border="0">
6888 <col align="left" valign="top">
6891 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6892 <td>a structure that holds the rsa parameters</td>
6895 <td><p><span class="term"><em class="parameter"><code>m</code></em> :</span></p></td>
6896 <td>will hold the modulus</td>
6899 <td><p><span class="term"><em class="parameter"><code>e</code></em> :</span></p></td>
6900 <td>will hold the public exponent</td>
6903 <td><p><span class="term"><em class="parameter"><code>d</code></em> :</span></p></td>
6904 <td>will hold the private exponent</td>
6907 <td><p><span class="term"><em class="parameter"><code>p</code></em> :</span></p></td>
6908 <td>will hold the first prime (p)</td>
6911 <td><p><span class="term"><em class="parameter"><code>q</code></em> :</span></p></td>
6912 <td>will hold the second prime (q)</td>
6915 <td><p><span class="term"><em class="parameter"><code>u</code></em> :</span></p></td>
6916 <td>will hold the coefficient</td>
6919 <td><p><span class="term"><em class="parameter"><code>e1</code></em> :</span></p></td>
6920 <td>will hold e1 = d mod (p-1)</td>
6923 <td><p><span class="term"><em class="parameter"><code>e2</code></em> :</span></p></td>
6924 <td>will hold e2 = d mod (q-1)</td>
6927 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6928 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6929 negative error value.</td>
6935 <div class="refsect2">
6936 <a name="gnutls-x509-privkey-export-rsa-raw"></a><h3>gnutls_x509_privkey_export_rsa_raw ()</h3>
6937 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_privkey_export_rsa_raw (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>,
6938 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *m</code></em>,
6939 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e</code></em>,
6940 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *d</code></em>,
6941 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *p</code></em>,
6942 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *q</code></em>,
6943 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *u</code></em>);</pre>
6945 This function will export the RSA private key's parameters found
6946 in the given structure. The new parameters will be allocated using
6947 <a class="link" href="gnutls-gnutls.html#gnutls-malloc" title="gnutls_malloc"><code class="function">gnutls_malloc()</code></a> and will be stored in the appropriate datum.
6949 <div class="variablelist"><table border="0">
6950 <col align="left" valign="top">
6953 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
6954 <td>a structure that holds the rsa parameters</td>
6957 <td><p><span class="term"><em class="parameter"><code>m</code></em> :</span></p></td>
6958 <td>will hold the modulus</td>
6961 <td><p><span class="term"><em class="parameter"><code>e</code></em> :</span></p></td>
6962 <td>will hold the public exponent</td>
6965 <td><p><span class="term"><em class="parameter"><code>d</code></em> :</span></p></td>
6966 <td>will hold the private exponent</td>
6969 <td><p><span class="term"><em class="parameter"><code>p</code></em> :</span></p></td>
6970 <td>will hold the first prime (p)</td>
6973 <td><p><span class="term"><em class="parameter"><code>q</code></em> :</span></p></td>
6974 <td>will hold the second prime (q)</td>
6977 <td><p><span class="term"><em class="parameter"><code>u</code></em> :</span></p></td>
6978 <td>will hold the coefficient</td>
6981 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
6982 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
6983 negative error value.</td>
6989 <div class="refsect2">
6990 <a name="gnutls-x509-crq-print"></a><h3>gnutls_x509_crq_print ()</h3>
6991 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_print (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
6992 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-certificate-print-formats-t" title="enum gnutls_certificate_print_formats_t"><span class="type">gnutls_certificate_print_formats_t</span></a> format</code></em>,
6993 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *out</code></em>);</pre>
6995 This function will pretty print a certificate request, suitable for
6999 The output <em class="parameter"><code>out</code></em> needs to be deallocate using <a class="link" href="gnutls-gnutls.html#gnutls-free" title="gnutls_free"><code class="function">gnutls_free()</code></a>.
7001 <div class="variablelist"><table border="0">
7002 <col align="left" valign="top">
7005 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7006 <td>The structure to be printed</td>
7009 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
7010 <td>Indicate the format to use</td>
7013 <td><p><span class="term"><em class="parameter"><code>out</code></em> :</span></p></td>
7014 <td>Newly allocated datum with zero terminated string.</td>
7017 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7018 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7019 negative error value.</td>
7023 <p class="since">Since 2.8.0</p>
7026 <div class="refsect2">
7027 <a name="gnutls-x509-crq-init"></a><h3>gnutls_x509_crq_init ()</h3>
7028 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_init (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> *crq</code></em>);</pre>
7030 This function will initialize a PKCS<span class="type">10</span> certificate request
7033 <div class="variablelist"><table border="0">
7034 <col align="left" valign="top">
7037 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7038 <td>The structure to be initialized</td>
7041 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7042 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7043 negative error value.</td>
7049 <div class="refsect2">
7050 <a name="gnutls-x509-crq-deinit"></a><h3>gnutls_x509_crq_deinit ()</h3>
7051 <pre class="programlisting"><span class="returnvalue">void</span> gnutls_x509_crq_deinit (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>);</pre>
7053 This function will deinitialize a PKCS<span class="type">10</span> certificate request
7056 <div class="variablelist"><table border="0">
7057 <col align="left" valign="top">
7059 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7060 <td>The structure to be initialized</td>
7065 <div class="refsect2">
7066 <a name="gnutls-x509-crq-import"></a><h3>gnutls_x509_crq_import ()</h3>
7067 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_import (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7068 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *data</code></em>,
7069 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>);</pre>
7071 This function will convert the given DER or PEM encoded certificate
7072 request to a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure. The output will be
7073 stored in <em class="parameter"><code>crq</code></em>.
7076 If the Certificate is PEM encoded it should have a header of "NEW
7077 CERTIFICATE REQUEST".
7079 <div class="variablelist"><table border="0">
7080 <col align="left" valign="top">
7083 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7084 <td>The structure to store the parsed certificate request.</td>
7087 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
7088 <td>The DER or PEM encoded certificate.</td>
7091 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
7092 <td>One of DER or PEM</td>
7095 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7096 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7097 negative error value.</td>
7103 <div class="refsect2">
7104 <a name="gnutls-x509-crq-get-dn"></a><h3>gnutls_x509_crq_get_dn ()</h3>
7105 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_dn (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7106 <em class="parameter"><code><span class="type">char</span> *buf</code></em>,
7107 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
7109 This function will copy the name of the Certificate request subject
7110 to the provided buffer. The name will be in the form
7111 "C=xxxx,O=yyyy,CN=zzzz" as described in RFC 2253. The output string
7112 <em class="parameter"><code>buf</code></em> will be ASCII or UTF-8 encoded, depending on the certificate
7115 <div class="variablelist"><table border="0">
7116 <col align="left" valign="top">
7119 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7120 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7123 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
7124 <td>a pointer to a structure to hold the name (may be <a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a>)</td>
7127 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
7128 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
7132 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7134 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is not
7135 long enough, and in that case the *<em class="parameter"><code>sizeof_buf</code></em> will be updated with
7136 the required size. On success 0 is returned.</td>
7142 <div class="refsect2">
7143 <a name="gnutls-x509-crq-get-dn-oid"></a><h3>gnutls_x509_crq_get_dn_oid ()</h3>
7144 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_dn_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7145 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
7146 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
7147 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);</pre>
7149 This function will extract the requested OID of the name of the
7150 certificate request subject, specified by the given index.
7152 <div class="variablelist"><table border="0">
7153 <col align="left" valign="top">
7156 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7157 <td>should contain a gnutls_x509_crq_t structure</td>
7160 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
7161 <td>Specifies which DN OID to send. Use zero to get the first one.</td>
7164 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
7165 <td>a pointer to a structure to hold the name (may be <a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a>)</td>
7168 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
7169 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
7173 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7175 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is
7176 not long enough, and in that case the *<em class="parameter"><code>sizeof_oid</code></em> will be
7177 updated with the required size. On success 0 is returned.</td>
7183 <div class="refsect2">
7184 <a name="gnutls-x509-crq-get-dn-by-oid"></a><h3>gnutls_x509_crq_get_dn_by_oid ()</h3>
7185 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_dn_by_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7186 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
7187 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
7188 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
7189 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
7190 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
7192 This function will extract the part of the name of the Certificate
7193 request subject, specified by the given OID. The output will be
7194 encoded as described in RFC2253. The output string will be ASCII
7195 or UTF-8 encoded, depending on the certificate data.
7198 Some helper macros with popular OIDs can be found in gnutls/x509.h
7199 If raw flag is zero, this function will only return known OIDs as
7200 text. Other OIDs will be DER encoded, as described in RFC2253 --
7201 in hex format with a '#' prefix. You can check about known OIDs
7202 using <a class="link" href="gnutls-x509.html#gnutls-x509-dn-oid-known" title="gnutls_x509_dn_oid_known ()"><code class="function">gnutls_x509_dn_oid_known()</code></a>.
7204 <div class="variablelist"><table border="0">
7205 <col align="left" valign="top">
7208 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7209 <td>should contain a gnutls_x509_crq_t structure</td>
7212 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
7213 <td>holds an Object Identified in null terminated string</td>
7216 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
7217 <td>In case multiple same OIDs exist in the RDN, this specifies
7218 which to send. Use zero to get the first one.</td>
7221 <td><p><span class="term"><em class="parameter"><code>raw_flag</code></em> :</span></p></td>
7222 <td>If non zero returns the raw DER data of the DN part.</td>
7225 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
7226 <td>a pointer to a structure to hold the name (may be <a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a>)</td>
7229 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
7230 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
7234 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7236 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is
7237 not long enough, and in that case the *<em class="parameter"><code>sizeof_buf</code></em> will be
7238 updated with the required size. On success 0 is returned.</td>
7244 <div class="refsect2">
7245 <a name="gnutls-x509-crq-set-dn-by-oid"></a><h3>gnutls_x509_crq_set_dn_by_oid ()</h3>
7246 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_set_dn_by_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7247 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
7248 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> raw_flag</code></em>,
7249 <em class="parameter"><code>const <span class="type">void</span> *data</code></em>,
7250 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> sizeof_data</code></em>);</pre>
7252 This function will set the part of the name of the Certificate
7253 request subject, specified by the given OID. The input string
7254 should be ASCII or UTF-8 encoded.
7257 Some helper macros with popular OIDs can be found in gnutls/x509.h
7258 With this function you can only set the known OIDs. You can test
7259 for known OIDs using <a class="link" href="gnutls-x509.html#gnutls-x509-dn-oid-known" title="gnutls_x509_dn_oid_known ()"><code class="function">gnutls_x509_dn_oid_known()</code></a>. For OIDs that are
7260 not known (by gnutls) you should properly DER encode your data, and
7261 call this function with raw_flag set.
7263 <div class="variablelist"><table border="0">
7264 <col align="left" valign="top">
7267 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7268 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7271 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
7272 <td>holds an Object Identifier in a zero-terminated string</td>
7275 <td><p><span class="term"><em class="parameter"><code>raw_flag</code></em> :</span></p></td>
7276 <td>must be 0, or 1 if the data are DER encoded</td>
7279 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
7280 <td>a pointer to the input data</td>
7283 <td><p><span class="term"><em class="parameter"><code>sizeof_data</code></em> :</span></p></td>
7284 <td>holds the size of <em class="parameter"><code>data</code></em>
7288 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7289 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7290 negative error value.</td>
7296 <div class="refsect2">
7297 <a name="gnutls-x509-crq-set-version"></a><h3>gnutls_x509_crq_set_version ()</h3>
7298 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_set_version (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7299 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> version</code></em>);</pre>
7301 This function will set the version of the certificate request. For
7302 version 1 requests this must be one.
7304 <div class="variablelist"><table border="0">
7305 <col align="left" valign="top">
7308 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7309 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7312 <td><p><span class="term"><em class="parameter"><code>version</code></em> :</span></p></td>
7313 <td>holds the version number, for v1 Requests must be 1</td>
7316 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7317 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7318 negative error value.</td>
7324 <div class="refsect2">
7325 <a name="gnutls-x509-crq-get-version"></a><h3>gnutls_x509_crq_get_version ()</h3>
7326 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_version (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>);</pre>
7328 This function will return the version of the specified Certificate
7331 <div class="variablelist"><table border="0">
7332 <col align="left" valign="top">
7335 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7336 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7339 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7340 <td>version of certificate request, or a negative value on
7347 <div class="refsect2">
7348 <a name="gnutls-x509-crq-set-key"></a><h3>gnutls_x509_crq_set_key ()</h3>
7349 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_set_key (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7350 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-privkey-t" title="gnutls_x509_privkey_t"><span class="type">gnutls_x509_privkey_t</span></a> key</code></em>);</pre>
7352 This function will set the public parameters from the given private
7353 key to the request. Only RSA keys are currently supported.
7355 <div class="variablelist"><table border="0">
7356 <col align="left" valign="top">
7359 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7360 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7363 <td><p><span class="term"><em class="parameter"><code>key</code></em> :</span></p></td>
7364 <td>holds a private key</td>
7367 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7368 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7369 negative error value.</td>
7375 <div class="refsect2">
7376 <a name="gnutls-x509-crq-set-challenge-password"></a><h3>gnutls_x509_crq_set_challenge_password ()</h3>
7377 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_set_challenge_password
7378 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7379 <em class="parameter"><code>const <span class="type">char</span> *pass</code></em>);</pre>
7381 This function will set a challenge password to be used when
7382 revoking the request.
7384 <div class="variablelist"><table border="0">
7385 <col align="left" valign="top">
7388 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7389 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7392 <td><p><span class="term"><em class="parameter"><code>pass</code></em> :</span></p></td>
7393 <td>holds a zero-terminated password</td>
7396 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7397 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7398 negative error value.</td>
7404 <div class="refsect2">
7405 <a name="gnutls-x509-crq-get-challenge-password"></a><h3>gnutls_x509_crq_get_challenge_password ()</h3>
7406 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_challenge_password
7407 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7408 <em class="parameter"><code><span class="type">char</span> *pass</code></em>,
7409 <em class="parameter"><code><span class="type">size_t</span> *sizeof_pass</code></em>);</pre>
7411 This function will return the challenge password in the request.
7412 The challenge password is intended to be used for requesting a
7413 revocation of the certificate.
7415 <div class="variablelist"><table border="0">
7416 <col align="left" valign="top">
7419 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7420 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7423 <td><p><span class="term"><em class="parameter"><code>pass</code></em> :</span></p></td>
7424 <td>will hold a zero-terminated password string</td>
7427 <td><p><span class="term"><em class="parameter"><code>sizeof_pass</code></em> :</span></p></td>
7428 <td>Initially holds the size of <em class="parameter"><code>pass</code></em>.</td>
7431 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7432 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7433 negative error value.</td>
7439 <div class="refsect2">
7440 <a name="gnutls-x509-crq-set-attribute-by-oid"></a><h3>gnutls_x509_crq_set_attribute_by_oid ()</h3>
7441 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_set_attribute_by_oid
7442 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7443 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
7444 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
7445 <em class="parameter"><code><span class="type">size_t</span> sizeof_buf</code></em>);</pre>
7447 This function will set the attribute in the certificate request
7448 specified by the given Object ID. The attribute must be be DER
7451 <div class="variablelist"><table border="0">
7452 <col align="left" valign="top">
7455 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7456 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7459 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
7460 <td>holds an Object Identified in zero-terminated string</td>
7463 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
7464 <td>a pointer to a structure that holds the attribute data</td>
7467 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
7468 <td>holds the size of <em class="parameter"><code>buf</code></em>
7472 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7473 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7474 negative error value.</td>
7480 <div class="refsect2">
7481 <a name="gnutls-x509-crq-get-attribute-by-oid"></a><h3>gnutls_x509_crq_get_attribute_by_oid ()</h3>
7482 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_attribute_by_oid
7483 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7484 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
7485 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
7486 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
7487 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>);</pre>
7489 This function will return the attribute in the certificate request
7490 specified by the given Object ID. The attribute will be DER
7493 <div class="variablelist"><table border="0">
7494 <col align="left" valign="top">
7497 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7498 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7501 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
7502 <td>holds an Object Identified in zero-terminated string</td>
7505 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
7506 <td>In case multiple same OIDs exist in the attribute list, this
7507 specifies which to send, use zero to get the first one</td>
7510 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
7511 <td>a pointer to a structure to hold the attribute data (may be <a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a>)</td>
7514 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
7515 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
7519 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7520 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7521 negative error value.</td>
7527 <div class="refsect2">
7528 <a name="gnutls-x509-crq-export"></a><h3>gnutls_x509_crq_export ()</h3>
7529 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_export (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7530 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-fmt-t" title="enum gnutls_x509_crt_fmt_t"><span class="type">gnutls_x509_crt_fmt_t</span></a> format</code></em>,
7531 <em class="parameter"><code><span class="type">void</span> *output_data</code></em>,
7532 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);</pre>
7534 This function will export the certificate request to a PEM or DER
7535 encoded PKCS10 structure.
7538 If the buffer provided is not long enough to hold the output, then
7539 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> will be returned and
7540 *<em class="parameter"><code>output_data_size</code></em> will be updated.
7543 If the structure is PEM encoded, it will have a header of "BEGIN
7544 NEW CERTIFICATE REQUEST".
7546 <div class="variablelist"><table border="0">
7547 <col align="left" valign="top">
7550 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7551 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7554 <td><p><span class="term"><em class="parameter"><code>format</code></em> :</span></p></td>
7555 <td>the format of output params. One of PEM or DER.</td>
7558 <td><p><span class="term"><em class="parameter"><code>output_data</code></em> :</span></p></td>
7559 <td>will contain a certificate request PEM or DER encoded</td>
7562 <td><p><span class="term"><em class="parameter"><code>output_data_size</code></em> :</span></p></td>
7563 <td>holds the size of output_data (and will be
7564 replaced by the actual size of parameters)</td>
7567 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7568 <td>In case of failure a negative value will be
7569 returned, and 0 on success.</td>
7575 <div class="refsect2">
7576 <a name="gnutls-x509-crt-set-crq"></a><h3>gnutls_x509_crt_set_crq ()</h3>
7577 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_crq (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
7578 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>);</pre>
7580 This function will set the name and public parameters as well as
7581 the extensions from the given certificate request to the certificate.
7582 Only RSA keys are currently supported.
7584 <div class="variablelist"><table border="0">
7585 <col align="left" valign="top">
7588 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
7589 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
7593 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7594 <td>holds a certificate request</td>
7597 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7598 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7599 negative error value.</td>
7605 <div class="refsect2">
7606 <a name="gnutls-x509-crt-set-crq-extensions"></a><h3>gnutls_x509_crt_set_crq_extensions ()</h3>
7607 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crt_set_crq_extensions (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a> crt</code></em>,
7608 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>);</pre>
7610 This function will set extensions from the given request to the
7613 <div class="variablelist"><table border="0">
7614 <col align="left" valign="top">
7617 <td><p><span class="term"><em class="parameter"><code>crt</code></em> :</span></p></td>
7618 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crt-t" title="gnutls_x509_crt_t"><span class="type">gnutls_x509_crt_t</span></a>
7622 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7623 <td>holds a certificate request</td>
7626 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7627 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7628 negative error value.</td>
7632 <p class="since">Since 2.8.0</p>
7635 <div class="refsect2">
7636 <a name="gnutls-x509-crq-set-key-rsa-raw"></a><h3>gnutls_x509_crq_set_key_rsa_raw ()</h3>
7637 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_set_key_rsa_raw (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7638 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *m</code></em>,
7639 <em class="parameter"><code>const <span class="type">gnutls_datum_t</span> *e</code></em>);</pre>
7641 This function will set the public parameters from the given private
7642 key to the request. Only RSA keys are currently supported.
7644 <div class="variablelist"><table border="0">
7645 <col align="left" valign="top">
7648 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7649 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7652 <td><p><span class="term"><em class="parameter"><code>m</code></em> :</span></p></td>
7653 <td>holds the modulus</td>
7656 <td><p><span class="term"><em class="parameter"><code>e</code></em> :</span></p></td>
7657 <td>holds the public exponent</td>
7660 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7661 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7662 negative error value.</td>
7666 <p class="since">Since 2.6.0</p>
7669 <div class="refsect2">
7670 <a name="gnutls-x509-crq-set-subject-alt-name"></a><h3>gnutls_x509_crq_set_subject_alt_name ()</h3>
7671 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_set_subject_alt_name
7672 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7673 <em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> nt</code></em>,
7674 <em class="parameter"><code>const <span class="type">void</span> *data</code></em>,
7675 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> data_size</code></em>,
7676 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>);</pre>
7678 This function will set the subject alternative name certificate
7679 extension. It can set the following types:
7682 &GNUTLS_SAN_DNSNAME: as a text string
7685 &GNUTLS_SAN_RFC822NAME: as a text string
7688 &GNUTLS_SAN_URI: as a text string
7691 &GNUTLS_SAN_IPADDRESS: as a binary IP address (4 or 16 bytes)
7694 Other values can be set as binary values with the proper DER encoding.
7696 <div class="variablelist"><table border="0">
7697 <col align="left" valign="top">
7700 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7701 <td>a certificate request of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a>
7705 <td><p><span class="term"><em class="parameter"><code>nt</code></em> :</span></p></td>
7706 <td>is one of the <a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> enumerations</td>
7709 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
7710 <td>The data to be set</td>
7713 <td><p><span class="term"><em class="parameter"><code>data_size</code></em> :</span></p></td>
7714 <td>The size of data to be set</td>
7717 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
7719 <a class="link" href="gnutls-x509.html#GNUTLS-FSAN-SET:CAPS" title="GNUTLS_FSAN_SET"><code class="literal">GNUTLS_FSAN_SET</code></a> to clear previous data or
7720 <a class="link" href="gnutls-x509.html#GNUTLS-FSAN-APPEND:CAPS" title="GNUTLS_FSAN_APPEND"><code class="literal">GNUTLS_FSAN_APPEND</code></a> to append.</td>
7723 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7724 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7725 negative error value.</td>
7729 <p class="since">Since 2.8.0</p>
7732 <div class="refsect2">
7733 <a name="gnutls-x509-crq-set-key-usage"></a><h3>gnutls_x509_crq_set_key_usage ()</h3>
7734 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_set_key_usage (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7735 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> usage</code></em>);</pre>
7737 This function will set the keyUsage certificate extension.
7739 <div class="variablelist"><table border="0">
7740 <col align="left" valign="top">
7743 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7744 <td>a certificate request of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a>
7748 <td><p><span class="term"><em class="parameter"><code>usage</code></em> :</span></p></td>
7749 <td>an ORed sequence of the GNUTLS_KEY_* elements.</td>
7752 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7753 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7754 negative error value.</td>
7758 <p class="since">Since 2.8.0</p>
7761 <div class="refsect2">
7762 <a name="gnutls-x509-crq-set-basic-constraints"></a><h3>gnutls_x509_crq_set_basic_constraints ()</h3>
7763 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_set_basic_constraints
7764 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7765 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> ca</code></em>,
7766 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> pathLenConstraint</code></em>);</pre>
7768 This function will set the basicConstraints certificate extension.
7770 <div class="variablelist"><table border="0">
7771 <col align="left" valign="top">
7774 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7775 <td>a certificate request of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a>
7779 <td><p><span class="term"><em class="parameter"><code>ca</code></em> :</span></p></td>
7780 <td>true(1) or false(0) depending on the Certificate authority status.</td>
7783 <td><p><span class="term"><em class="parameter"><code>pathLenConstraint</code></em> :</span></p></td>
7784 <td>non-negative values indicate maximum length of path,
7785 and negative values indicate that the pathLenConstraints field should
7786 not be present.</td>
7789 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7790 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7791 negative error value.</td>
7795 <p class="since">Since 2.8.0</p>
7798 <div class="refsect2">
7799 <a name="gnutls-x509-crq-set-key-purpose-oid"></a><h3>gnutls_x509_crq_set_key_purpose_oid ()</h3>
7800 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_set_key_purpose_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7801 <em class="parameter"><code>const <span class="type">void</span> *oid</code></em>,
7802 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> critical</code></em>);</pre>
7804 This function will set the key purpose OIDs of the Certificate.
7805 These are stored in the Extended Key Usage extension (2.5.29.37)
7806 See the GNUTLS_KP_* definitions for human readable names.
7809 Subsequent calls to this function will append OIDs to the OID list.
7811 <div class="variablelist"><table border="0">
7812 <col align="left" valign="top">
7815 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7816 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a>
7820 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
7821 <td>a pointer to a zero-terminated string that holds the OID</td>
7824 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
7825 <td>Whether this extension will be critical or not</td>
7828 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7829 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7830 negative error value.</td>
7834 <p class="since">Since 2.8.0</p>
7837 <div class="refsect2">
7838 <a name="gnutls-x509-crq-get-key-purpose-oid"></a><h3>gnutls_x509_crq_get_key_purpose_oid ()</h3>
7839 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_key_purpose_oid (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7840 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
7841 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
7842 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>,
7843 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
7845 This function will extract the key purpose OIDs of the Certificate
7846 specified by the given index. These are stored in the Extended Key
7847 Usage extension (2.5.29.37). See the GNUTLS_KP_* definitions for
7848 human readable names.
7850 <div class="variablelist"><table border="0">
7851 <col align="left" valign="top">
7854 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7855 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7858 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
7859 <td>This specifies which OID to return, use zero to get the first one</td>
7862 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
7863 <td>a pointer to a buffer to hold the OID (may be <a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a>)</td>
7866 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
7867 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
7871 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
7872 <td>output variable with critical flag, may be <a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a>.</td>
7875 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7877 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if the provided buffer is
7878 not long enough, and in that case the *<em class="parameter"><code>sizeof_oid</code></em> will be
7879 updated with the required size. On success 0 is returned.</td>
7883 <p class="since">Since 2.8.0</p>
7886 <div class="refsect2">
7887 <a name="gnutls-x509-crq-get-extension-data"></a><h3>gnutls_x509_crq_get_extension_data ()</h3>
7888 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_extension_data (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7889 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
7890 <em class="parameter"><code><span class="type">void</span> *data</code></em>,
7891 <em class="parameter"><code><span class="type">size_t</span> *sizeof_data</code></em>);</pre>
7893 This function will return the requested extension data in the
7894 certificate. The extension data will be stored as a string in the
7898 Use <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-extension-info" title="gnutls_x509_crq_get_extension_info ()"><code class="function">gnutls_x509_crq_get_extension_info()</code></a> to extract the OID and
7899 critical flag. Use <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-extension-by-oid" title="gnutls_x509_crq_get_extension_by_oid ()"><code class="function">gnutls_x509_crq_get_extension_by_oid()</code></a> instead,
7900 if you want to get data indexed by the extension OID rather than
7903 <div class="variablelist"><table border="0">
7904 <col align="left" valign="top">
7907 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7908 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7911 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
7912 <td>Specifies which extension OID to send. Use zero to get the first one.</td>
7915 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
7916 <td>a pointer to a structure to hold the data (may be null)</td>
7919 <td><p><span class="term"><em class="parameter"><code>sizeof_data</code></em> :</span></p></td>
7920 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
7924 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7925 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7926 negative value in case of an error. If your have reached the
7927 last extension available <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a>
7928 will be returned.</td>
7932 <p class="since">Since 2.8.0</p>
7935 <div class="refsect2">
7936 <a name="gnutls-x509-crq-get-extension-info"></a><h3>gnutls_x509_crq_get_extension_info ()</h3>
7937 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_extension_info (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7938 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
7939 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
7940 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>,
7941 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
7943 This function will return the requested extension OID in the
7944 certificate, and the critical flag for it. The extension OID will
7945 be stored as a string in the provided buffer. Use
7946 <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-extension-data" title="gnutls_x509_crq_get_extension_data ()"><code class="function">gnutls_x509_crq_get_extension_data()</code></a> to extract the data.
7949 If the buffer provided is not long enough to hold the output, then
7950 *<em class="parameter"><code>sizeof_oid</code></em> is updated and <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> will be
7953 <div class="variablelist"><table border="0">
7954 <col align="left" valign="top">
7957 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
7958 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
7961 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
7962 <td>Specifies which extension OID to send. Use zero to get the first one.</td>
7965 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
7966 <td>a pointer to a structure to hold the OID</td>
7969 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
7970 <td>initially holds the maximum size of <em class="parameter"><code>oid</code></em>, on return
7971 holds actual size of <em class="parameter"><code>oid</code></em>.</td>
7974 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
7975 <td>output variable with critical flag, may be NULL.</td>
7978 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
7979 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
7980 negative value in case of an error. If your have reached the
7981 last extension available <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a>
7982 will be returned.</td>
7986 <p class="since">Since 2.8.0</p>
7989 <div class="refsect2">
7990 <a name="gnutls-x509-crq-get-attribute-data"></a><h3>gnutls_x509_crq_get_attribute_data ()</h3>
7991 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_attribute_data (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
7992 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
7993 <em class="parameter"><code><span class="type">void</span> *data</code></em>,
7994 <em class="parameter"><code><span class="type">size_t</span> *sizeof_data</code></em>);</pre>
7996 This function will return the requested attribute data in the
7997 certificate request. The attribute data will be stored as a string in the
8001 Use <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-attribute-info" title="gnutls_x509_crq_get_attribute_info ()"><code class="function">gnutls_x509_crq_get_attribute_info()</code></a> to extract the OID.
8002 Use <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-attribute-by-oid" title="gnutls_x509_crq_get_attribute_by_oid ()"><code class="function">gnutls_x509_crq_get_attribute_by_oid()</code></a> instead,
8003 if you want to get data indexed by the attribute OID rather than
8006 <div class="variablelist"><table border="0">
8007 <col align="left" valign="top">
8010 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
8011 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
8014 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
8015 <td>Specifies which attribute OID to send. Use zero to get the first one.</td>
8018 <td><p><span class="term"><em class="parameter"><code>data</code></em> :</span></p></td>
8019 <td>a pointer to a structure to hold the data (may be null)</td>
8022 <td><p><span class="term"><em class="parameter"><code>sizeof_data</code></em> :</span></p></td>
8023 <td>initially holds the size of <em class="parameter"><code>oid</code></em>
8027 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
8028 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
8029 negative value in case of an error. If your have reached the
8030 last extension available <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a>
8031 will be returned.</td>
8035 <p class="since">Since 2.8.0</p>
8038 <div class="refsect2">
8039 <a name="gnutls-x509-crq-get-attribute-info"></a><h3>gnutls_x509_crq_get_attribute_info ()</h3>
8040 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_attribute_info (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
8041 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
8042 <em class="parameter"><code><span class="type">void</span> *oid</code></em>,
8043 <em class="parameter"><code><span class="type">size_t</span> *sizeof_oid</code></em>);</pre>
8045 This function will return the requested attribute OID in the
8046 certificate, and the critical flag for it. The attribute OID will
8047 be stored as a string in the provided buffer. Use
8048 <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-attribute-data" title="gnutls_x509_crq_get_attribute_data ()"><code class="function">gnutls_x509_crq_get_attribute_data()</code></a> to extract the data.
8051 If the buffer provided is not long enough to hold the output, then
8052 *<em class="parameter"><code>sizeof_oid</code></em> is updated and <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> will be
8055 <div class="variablelist"><table border="0">
8056 <col align="left" valign="top">
8059 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
8060 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
8063 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
8064 <td>Specifies which attribute OID to send. Use zero to get the first one.</td>
8067 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
8068 <td>a pointer to a structure to hold the OID</td>
8071 <td><p><span class="term"><em class="parameter"><code>sizeof_oid</code></em> :</span></p></td>
8072 <td>initially holds the maximum size of <em class="parameter"><code>oid</code></em>, on return
8073 holds actual size of <em class="parameter"><code>oid</code></em>.</td>
8076 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
8077 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
8078 negative value in case of an error. If your have reached the
8079 last extension available <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a>
8080 will be returned.</td>
8084 <p class="since">Since 2.8.0</p>
8087 <div class="refsect2">
8088 <a name="gnutls-x509-crq-get-pk-algorithm"></a><h3>gnutls_x509_crq_get_pk_algorithm ()</h3>
8089 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_pk_algorithm (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
8090 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *bits</code></em>);</pre>
8092 This function will return the public key algorithm of a PKCS<span class="type">10</span>
8093 certificate request.
8096 If bits is non-<a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a>, it should have enough size to hold the
8097 parameters size in bits. For RSA the bits returned is the modulus.
8098 For DSA the bits returned are of the public exponent.
8100 <div class="variablelist"><table border="0">
8101 <col align="left" valign="top">
8104 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
8105 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
8108 <td><p><span class="term"><em class="parameter"><code>bits</code></em> :</span></p></td>
8109 <td>if bits is non-<a href="http://library.gnome.org/devel/glib/unstable/glib-Standard-Macros.html#NULL:CAPS"><code class="literal">NULL</code></a> it will hold the size of the parameters' in bits</td>
8112 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
8113 <td>a member of the <a class="link" href="gnutls-gnutls.html#gnutls-pk-algorithm-t" title="enum gnutls_pk_algorithm_t"><span class="type">gnutls_pk_algorithm_t</span></a> enumeration on
8114 success, or a negative value on error.</td>
8120 <div class="refsect2">
8121 <a name="gnutls-x509-crq-get-key-id"></a><h3>gnutls_x509_crq_get_key_id ()</h3>
8122 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_key_id (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
8123 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> flags</code></em>,
8124 <em class="parameter"><code>unsigned <span class="type">char</span> *output_data</code></em>,
8125 <em class="parameter"><code><span class="type">size_t</span> *output_data_size</code></em>);</pre>
8127 This function will return a unique ID the depends on the public key
8128 parameters. This ID can be used in checking whether a certificate
8129 corresponds to the given private key.
8132 If the buffer provided is not long enough to hold the output, then
8133 *<em class="parameter"><code>output_data_size</code></em> is updated and GNUTLS_E_SHORT_MEMORY_BUFFER will
8134 be returned. The output will normally be a SHA-1 hash output,
8137 <div class="variablelist"><table border="0">
8138 <col align="left" valign="top">
8141 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
8142 <td>a certificate of type <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a>
8146 <td><p><span class="term"><em class="parameter"><code>flags</code></em> :</span></p></td>
8147 <td>should be 0 for now</td>
8150 <td><p><span class="term"><em class="parameter"><code>output_data</code></em> :</span></p></td>
8151 <td>will contain the key ID</td>
8154 <td><p><span class="term"><em class="parameter"><code>output_data_size</code></em> :</span></p></td>
8155 <td>holds the size of output_data (and will be
8156 replaced by the actual size of parameters)</td>
8159 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
8160 <td>In case of failure a negative value will be
8161 returned, and 0 on success.</td>
8165 <p class="since">Since 2.8.0</p>
8168 <div class="refsect2">
8169 <a name="gnutls-x509-crq-get-key-rsa-raw"></a><h3>gnutls_x509_crq_get_key_rsa_raw ()</h3>
8170 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_key_rsa_raw (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
8171 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *m</code></em>,
8172 <em class="parameter"><code><span class="type">gnutls_datum_t</span> *e</code></em>);</pre>
8174 This function will export the RSA public key's parameters found in
8175 the given structure. The new parameters will be allocated using
8176 <a class="link" href="gnutls-gnutls.html#gnutls-malloc" title="gnutls_malloc"><code class="function">gnutls_malloc()</code></a> and will be stored in the appropriate datum.
8178 <div class="variablelist"><table border="0">
8179 <col align="left" valign="top">
8182 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
8183 <td>Holds the certificate</td>
8186 <td><p><span class="term"><em class="parameter"><code>m</code></em> :</span></p></td>
8187 <td>will hold the modulus</td>
8190 <td><p><span class="term"><em class="parameter"><code>e</code></em> :</span></p></td>
8191 <td>will hold the public exponent</td>
8194 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
8195 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
8196 negative error value.</td>
8200 <p class="since">Since 2.8.0</p>
8203 <div class="refsect2">
8204 <a name="gnutls-x509-crq-get-key-usage"></a><h3>gnutls_x509_crq_get_key_usage ()</h3>
8205 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_key_usage (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
8206 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *key_usage</code></em>,
8207 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
8209 This function will return certificate's key usage, by reading the
8210 keyUsage X.509 extension (2.5.29.15). The key usage value will
8211 ORed values of the: <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-DIGITAL-SIGNATURE:CAPS" title="GNUTLS_KEY_DIGITAL_SIGNATURE"><code class="literal">GNUTLS_KEY_DIGITAL_SIGNATURE</code></a>,
8212 <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-NON-REPUDIATION:CAPS" title="GNUTLS_KEY_NON_REPUDIATION"><code class="literal">GNUTLS_KEY_NON_REPUDIATION</code></a>, <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-KEY-ENCIPHERMENT:CAPS" title="GNUTLS_KEY_KEY_ENCIPHERMENT"><code class="literal">GNUTLS_KEY_KEY_ENCIPHERMENT</code></a>,
8213 <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-DATA-ENCIPHERMENT:CAPS" title="GNUTLS_KEY_DATA_ENCIPHERMENT"><code class="literal">GNUTLS_KEY_DATA_ENCIPHERMENT</code></a>, <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-KEY-AGREEMENT:CAPS" title="GNUTLS_KEY_KEY_AGREEMENT"><code class="literal">GNUTLS_KEY_KEY_AGREEMENT</code></a>,
8214 <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-KEY-CERT-SIGN:CAPS" title="GNUTLS_KEY_KEY_CERT_SIGN"><code class="literal">GNUTLS_KEY_KEY_CERT_SIGN</code></a>, <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-CRL-SIGN:CAPS" title="GNUTLS_KEY_CRL_SIGN"><code class="literal">GNUTLS_KEY_CRL_SIGN</code></a>,
8215 <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-ENCIPHER-ONLY:CAPS" title="GNUTLS_KEY_ENCIPHER_ONLY"><code class="literal">GNUTLS_KEY_ENCIPHER_ONLY</code></a>, <a class="link" href="gnutls-gnutls.html#GNUTLS-KEY-DECIPHER-ONLY:CAPS" title="GNUTLS_KEY_DECIPHER_ONLY"><code class="literal">GNUTLS_KEY_DECIPHER_ONLY</code></a>.
8217 <div class="variablelist"><table border="0">
8218 <col align="left" valign="top">
8221 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
8222 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
8225 <td><p><span class="term"><em class="parameter"><code>key_usage</code></em> :</span></p></td>
8226 <td>where the key usage bits will be stored</td>
8229 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
8230 <td>will be non zero if the extension is marked as critical</td>
8233 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
8234 <td>the certificate key usage, or a negative value in case of
8235 parsing error. If the certificate does not contain the keyUsage
8236 extension <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> will be
8241 <p class="since">Since 2.8.0</p>
8244 <div class="refsect2">
8245 <a name="gnutls-x509-crq-get-basic-constraints"></a><h3>gnutls_x509_crq_get_basic_constraints ()</h3>
8246 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_basic_constraints
8247 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
8248 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>,
8249 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *ca</code></em>,
8250 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *pathlen</code></em>);</pre>
8252 This function will read the certificate's basic constraints, and
8253 return the certificates CA status. It reads the basicConstraints
8254 X.509 extension (2.5.29.19).
8256 <div class="variablelist"><table border="0">
8257 <col align="left" valign="top">
8260 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
8261 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
8264 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
8265 <td>will be non zero if the extension is marked as critical</td>
8268 <td><p><span class="term"><em class="parameter"><code>ca</code></em> :</span></p></td>
8269 <td>pointer to output integer indicating CA status, may be NULL,
8270 value is 1 if the certificate CA flag is set, 0 otherwise.</td>
8273 <td><p><span class="term"><em class="parameter"><code>pathlen</code></em> :</span></p></td>
8274 <td>pointer to output integer indicating path length (may be
8275 NULL), non-negative values indicate a present pathLenConstraint
8276 field and the actual value, -1 indicate that the field is absent.</td>
8279 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
8280 <td>If the certificate is a CA a positive value will be
8281 returned, or zero if the certificate does not have CA flag set.
8282 A negative value may be returned in case of errors. If the
8283 certificate does not contain the basicConstraints extension
8284 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> will be returned.</td>
8288 <p class="since">Since 2.8.0</p>
8291 <div class="refsect2">
8292 <a name="gnutls-x509-crq-get-subject-alt-name"></a><h3>gnutls_x509_crq_get_subject_alt_name ()</h3>
8293 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_subject_alt_name
8294 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
8295 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
8296 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
8297 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>,
8298 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *ret_type</code></em>,
8299 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
8301 This function will return the alternative names, contained in the
8302 given certificate. It is the same as
8303 <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-subject-alt-name" title="gnutls_x509_crq_get_subject_alt_name ()"><code class="function">gnutls_x509_crq_get_subject_alt_name()</code></a> except for the fact that it
8304 will return the type of the alternative name in <em class="parameter"><code>ret_type</code></em> even if
8305 the function fails for some reason (i.e. the buffer provided is
8308 <div class="variablelist"><table border="0">
8309 <col align="left" valign="top">
8312 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
8313 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
8316 <td><p><span class="term"><em class="parameter"><code>seq</code></em> :</span></p></td>
8317 <td>specifies the sequence number of the alt name, 0 for the
8318 first one, 1 for the second etc.</td>
8321 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
8322 <td>is the place where the alternative name will be copied to</td>
8325 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
8326 <td>holds the size of ret.</td>
8329 <td><p><span class="term"><em class="parameter"><code>ret_type</code></em> :</span></p></td>
8330 <td>holds the <a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a> name type</td>
8333 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
8334 <td>will be non zero if the extension is marked as critical
8338 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
8339 <td>the alternative subject name type on success, one of the
8340 enumerated <a class="link" href="gnutls-gnutls.html#gnutls-x509-subject-alt-name-t" title="enum gnutls_x509_subject_alt_name_t"><span class="type">gnutls_x509_subject_alt_name_t</span></a>. It will return
8341 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if <em class="parameter"><code>ret_size</code></em> is not large enough to
8342 hold the value. In that case <em class="parameter"><code>ret_size</code></em> will be updated with the
8343 required size. If the certificate request does not have an
8344 Alternative name with the specified sequence number then
8345 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> is returned.</td>
8349 <p class="since">Since 2.8.0</p>
8352 <div class="refsect2">
8353 <a name="gnutls-x509-crq-get-subject-alt-othername-oid"></a><h3>gnutls_x509_crq_get_subject_alt_othername_oid ()</h3>
8354 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_subject_alt_othername_oid
8355 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
8356 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> seq</code></em>,
8357 <em class="parameter"><code><span class="type">void</span> *ret</code></em>,
8358 <em class="parameter"><code><span class="type">size_t</span> *ret_size</code></em>);</pre>
8360 This function will extract the type OID of an otherName Subject
8361 Alternative Name, contained in the given certificate, and return
8362 the type as an enumerated element.
8365 This function is only useful if
8366 <a class="link" href="gnutls-x509.html#gnutls-x509-crq-get-subject-alt-name" title="gnutls_x509_crq_get_subject_alt_name ()"><code class="function">gnutls_x509_crq_get_subject_alt_name()</code></a> returned
8367 <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME</code></a>.
8369 <div class="variablelist"><table border="0">
8370 <col align="left" valign="top">
8373 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
8374 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
8377 <td><p><span class="term"><em class="parameter"><code>seq</code></em> :</span></p></td>
8378 <td>specifies the sequence number of the alt name (0 for the first one, 1 for the second etc.)</td>
8381 <td><p><span class="term"><em class="parameter"><code>ret</code></em> :</span></p></td>
8382 <td>is the place where the otherName OID will be copied to</td>
8385 <td><p><span class="term"><em class="parameter"><code>ret_size</code></em> :</span></p></td>
8386 <td>holds the size of ret.</td>
8389 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
8390 <td>the alternative subject name type on success, one of the
8391 enumerated gnutls_x509_subject_alt_name_t. For supported OIDs,
8392 it will return one of the virtual (GNUTLS_SAN_OTHERNAME_*) types,
8393 e.g. <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME-XMPP:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME_XMPP</code></a>, and <a class="link" href="gnutls-gnutls.html#GNUTLS-SAN-OTHERNAME:CAPS"><code class="literal">GNUTLS_SAN_OTHERNAME</code></a> for
8394 unknown OIDs. It will return <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SHORT-MEMORY-BUFFER:CAPS" title="GNUTLS_E_SHORT_MEMORY_BUFFER"><code class="literal">GNUTLS_E_SHORT_MEMORY_BUFFER</code></a> if
8395 <em class="parameter"><code>ret_size</code></em> is not large enough to hold the value. In that case
8396 <em class="parameter"><code>ret_size</code></em> will be updated with the required size. If the
8397 certificate does not have an Alternative name with the specified
8398 sequence number and with the otherName type then
8399 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> is returned.</td>
8403 <p class="since">Since 2.8.0</p>
8406 <div class="refsect2">
8407 <a name="gnutls-x509-crq-get-extension-by-oid"></a><h3>gnutls_x509_crq_get_extension_by_oid ()</h3>
8408 <pre class="programlisting"><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="returnvalue">int</span></a> gnutls_x509_crq_get_extension_by_oid
8409 (<em class="parameter"><code><a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> crq</code></em>,
8410 <em class="parameter"><code>const <span class="type">char</span> *oid</code></em>,
8411 <em class="parameter"><code><a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> indx</code></em>,
8412 <em class="parameter"><code><span class="type">void</span> *buf</code></em>,
8413 <em class="parameter"><code><span class="type">size_t</span> *sizeof_buf</code></em>,
8414 <em class="parameter"><code>unsigned <a class="link" href="gnutls-crypto.html#int" title="int ()"><span class="type">int</span></a> *critical</code></em>);</pre>
8416 This function will return the extension specified by the OID in
8417 the certificate. The extensions will be returned as binary data
8418 DER encoded, in the provided buffer.
8420 <div class="variablelist"><table border="0">
8421 <col align="left" valign="top">
8424 <td><p><span class="term"><em class="parameter"><code>crq</code></em> :</span></p></td>
8425 <td>should contain a <a class="link" href="gnutls-gnutls.html#gnutls-x509-crq-t" title="gnutls_x509_crq_t"><span class="type">gnutls_x509_crq_t</span></a> structure</td>
8428 <td><p><span class="term"><em class="parameter"><code>oid</code></em> :</span></p></td>
8429 <td>holds an Object Identified in null terminated string</td>
8432 <td><p><span class="term"><em class="parameter"><code>indx</code></em> :</span></p></td>
8433 <td>In case multiple same OIDs exist in the extensions, this
8434 specifies which to send. Use zero to get the first one.</td>
8437 <td><p><span class="term"><em class="parameter"><code>buf</code></em> :</span></p></td>
8438 <td>a pointer to a structure to hold the name (may be null)</td>
8441 <td><p><span class="term"><em class="parameter"><code>sizeof_buf</code></em> :</span></p></td>
8442 <td>initially holds the size of <em class="parameter"><code>buf</code></em>
8446 <td><p><span class="term"><em class="parameter"><code>critical</code></em> :</span></p></td>
8447 <td>will be non zero if the extension is marked as critical</td>
8450 <td><p><span class="term"><span class="emphasis"><em>Returns</em></span> :</span></p></td>
8451 <td>On success, <a class="link" href="gnutls-gnutls.html#GNUTLS-E-SUCCESS:CAPS" title="GNUTLS_E_SUCCESS"><code class="literal">GNUTLS_E_SUCCESS</code></a> is returned, otherwise a
8452 negative value in case of an error. If the certificate does not
8453 contain the specified extension
8454 <a class="link" href="gnutls-gnutls.html#GNUTLS-E-REQUESTED-DATA-NOT-AVAILABLE:CAPS" title="GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE"><code class="literal">GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE</code></a> will be returned.</td>
8458 <p class="since">Since 2.8.0</p>
8462 <div class="footer">
8464 Generated by GTK-Doc V1.18</div>
projects / external / libgnutls26.git / blob