gnutls_x509_crt_get_key_id — API function

Synopsis

#include <gnutls/x509.h>

int gnutls_x509_crt_get_key_id(gnutls_x509_crt_t crt, unsigned int flags, unsigned char * output_data, size_t * output_data_size);

Arguments

gnutls_x509_crt_t crt

Holds the certificate

unsigned int flags

should be one of the flags from gnutls_keyid_flags_t

unsigned char * output_data

will contain the key ID

size_t * output_data_size

holds the size of output_data (and will be replaced by the actual size of parameters)

Description

This function will return a unique ID that depends on the public key parameters. This ID can be used in checking whether a certificate corresponds to the given private key.

If the buffer provided is not long enough to hold the output, then *output_data_size is updated and GNUTLS_E_SHORT_MEMORY_BUFFER will be returned.  The output will normally be a SHA-1 hash output, which is 20 bytes.

Returns

In case of failure a negative error code will be returned, and 0 on success.

Reporting Bugs

Report bugs to <bugs@gnutls.org>.
Home page: https://www.gnutls.org

See Also

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit

https://www.gnutls.org/manual/

Info

3.6.9 gnutls