gnutls_pubkey_get_preferred_hash_algorithm — API function


#include <gnutls/abstract.h>

int gnutls_pubkey_get_preferred_hash_algorithm(gnutls_pubkey_t key, gnutls_digest_algorithm_t *         hash, unsigned int * mand);


gnutls_pubkey_t key

Holds the certificate

gnutls_digest_algorithm_t *         hash

The result of the call with the hash algorithm used for signature

unsigned int * mand

If non zero it means that the algorithm MUST use this hash. May be NULL.


This function will read the certificate and return the appropriate digest algorithm to use for signing with this certificate. Some certificates (i.e. DSA might not be able to sign without the preferred algorithm).

To get the signature algorithm instead of just the hash use gnutls_pk_to_sign() with the algorithm of the certificate/key and the provided  hash .


the 0 if the hash algorithm is found. A negative error code is returned on error.



Reporting Bugs

Report bugs to <>.
Home page:

See Also

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit


3.6.9 gnutls