Blame doc/functions/gnutls_pkcs11_crt_is_known
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
@deftypefun {unsigned} {gnutls_pkcs11_crt_is_known} (const char * @var{url}, gnutls_x509_crt_t @var{cert}, unsigned int @var{flags})
|
|
Packit Service |
4684c1 |
@var{url}: A PKCS 11 url identifying a token
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
@var{cert}: is the certificate to find issuer for
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
@var{flags}: Use zero or flags from @code{GNUTLS_PKCS11_OBJ_FLAG} .
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
This function will check whether the provided certificate is stored
|
|
Packit Service |
4684c1 |
in the specified token. This is useful in combination with
|
|
Packit Service |
4684c1 |
@code{GNUTLS_PKCS11_OBJ_FLAG_RETRIEVE_TRUSTED} or
|
|
Packit Service |
4684c1 |
@code{GNUTLS_PKCS11_OBJ_FLAG_RETRIEVE_DISTRUSTED} ,
|
|
Packit Service |
4684c1 |
to check whether a CA is present or a certificate is blacklisted in
|
|
Packit Service |
4684c1 |
a trust PKCS @code{11} module.
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
This function can be used with a @code{url} of "pkcs11:", and in that case all modules
|
|
Packit Service |
4684c1 |
will be searched. To restrict the modules to the marked as trusted in p11-kit
|
|
Packit Service |
4684c1 |
use the @code{GNUTLS_PKCS11_OBJ_FLAG_PRESENT_IN_TRUSTED_MODULE} flag.
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
Note that the flag @code{GNUTLS_PKCS11_OBJ_FLAG_RETRIEVE_DISTRUSTED} is
|
|
Packit Service |
4684c1 |
specific to p11-kit trust modules.
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
@strong{Returns:} If the certificate exists non-zero is returned, otherwise zero.
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
@strong{Since:} 3.3.0
|
|
Packit Service |
4684c1 |
@end deftypefun
|