gnutls_x509_crt_list_import_url — API function

Synopsis

#include <gnutls/x509.h>

int gnutls_x509_crt_list_import_url(gnutls_x509_crt_t ** certs, unsigned int * size, const char * url, gnutls_pin_callback_t pin_fn, void * pin_fn_userdata, unsigned int flags);

Arguments

gnutls_x509_crt_t ** certs

Will hold the allocated certificate list.

unsigned int * size

It will contain the size of the list.

const char * url

A PKCS 11 url

gnutls_pin_callback_t pin_fn

a PIN callback if not globally set

void * pin_fn_userdata

parameter for the PIN callback

unsigned int flags

One of GNUTLS_PKCS11_OBJ_* flags for PKCS11 URLs or zero otherwise

Description

This function will import a certificate chain present in a PKCS11 token or any type of back-end that supports URLs. The certificates must be deinitialized afterwards using gnutls_x509_crt_deinit() and the returned pointer must be freed using gnutls_free().

The URI provided must be the first certificate in the chain; subsequent certificates will be retrieved using gnutls_pkcs11_get_raw_issuer() or equivalent functionality for the supported URI.

Returns

On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative error value.

Since

3.6.3

Reporting Bugs

Report bugs to <bugs@gnutls.org>.
Home page: https://www.gnutls.org

See Also

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit

https://www.gnutls.org/manual/

Info

3.6.9 gnutls