gnutls_certificate_set_verify_limits — API function

Synopsis

#include <gnutls/gnutls.h>

void gnutls_certificate_set_verify_limits(gnutls_certificate_credentials_t res, unsigned int max_bits, unsigned int max_depth);

Arguments

gnutls_certificate_credentials_t res

is a gnutls_certificate_credentials type

unsigned int max_bits

is the number of bits of an acceptable certificate (default 8200)

unsigned int max_depth

is maximum depth of the verification of a certificate chain (default 5)

Description

This function will set some upper limits for the default verification function, gnutls_certificate_verify_peers2(), to avoid denial of service attacks.  You can set them to zero to disable limits.

Reporting Bugs

Report bugs to <bugs@gnutls.org>.
Home page: https://www.gnutls.org

See Also

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit

https://www.gnutls.org/manual/

Info

3.6.9 gnutls