gnutls_x509_crt_sign2(3) gnutls gnutls_x509_crt_sign2(3)
NAME
gnutls_x509_crt_sign2 - API function
SYNOPSIS
#include <gnutls/x509.h>
int gnutls_x509_crt_sign2(gnutls_x509_crt_t crt, gnutls_x509_crt_t is-
suer, gnutls_x509_privkey_t issuer_key, gnutls_digest_algorithm_t dig,
unsigned int flags);
ARGUMENTS
gnutls_x509_crt_t crt
a certificate of type gnutls_x509_crt_t
gnutls_x509_crt_t issuer
is the certificate of the certificate issuer
gnutls_x509_privkey_t issuer_key
holds the issuer's private key
gnutls_digest_algorithm_t dig
The message digest to use, GNUTLS_DIG_SHA256 is a safe
choice
unsigned int flags
must be 0
DESCRIPTION
This function will sign the certificate with the issuer's private key,
and will copy the issuer's information into the certificate.
This must be the last step in a certificate generation since all the
previously set parameters are now signed.
A known limitation of this function is, that a newly-signed certificate
will not be fully functional (e.g., for signature verification), until
it is exported an re-imported.
After GnuTLS 3.6.1 the value of dig may be GNUTLS_DIG_UNKNOWN, and in
that case, a suitable but reasonable for the key algorithm will be se-
lected.
RETURNS
On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative er-
ror value.
REPORTING BUGS
Report bugs to <bugs@gnutls.org>.
Home page: https://www.gnutls.org
COPYRIGHT
Copyright © 2001- Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification,
are permitted in any medium without royalty provided the copyright no-
tice and this notice are preserved.
SEE ALSO
The full documentation for gnutls is maintained as a Texinfo manual.
If the /usr/share/doc/gnutls/ directory does not contain the HTML form
visit
https://www.gnutls.org/manual/
gnutls 3.7.3 gnutls_x509_crt_sign2(3)
Generated by dwww version 1.14 on Sun Dec 29 18:22:26 CET 2024.