Blame doc/functions/gnutls_x509_crq_sign2
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
@deftypefun {int} {gnutls_x509_crq_sign2} (gnutls_x509_crq_t @var{crq}, gnutls_x509_privkey_t @var{key}, gnutls_digest_algorithm_t @var{dig}, unsigned int @var{flags})
|
|
Packit Service |
4684c1 |
@var{crq}: should contain a @code{gnutls_x509_crq_t} type
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
@var{key}: holds a private key
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
@var{dig}: The message digest to use, i.e., @code{GNUTLS_DIG_SHA256}
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
@var{flags}: must be 0
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
This function will sign the certificate request with a private key.
|
|
Packit Service |
4684c1 |
This must be the same key as the one used in
|
|
Packit Service |
4684c1 |
@code{gnutls_x509_crt_set_key()} since a certificate request is self
|
|
Packit Service |
4684c1 |
signed.
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
This must be the last step in a certificate request generation
|
|
Packit Service |
4684c1 |
since all the previously set parameters are now signed.
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
A known limitation of this function is, that a newly-signed request will not
|
|
Packit Service |
4684c1 |
be fully functional (e.g., for signature verification), until it
|
|
Packit Service |
4684c1 |
is exported an re-imported.
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
After GnuTLS 3.6.1 the value of @code{dig} may be @code{GNUTLS_DIG_UNKNOWN} ,
|
|
Packit Service |
4684c1 |
and in that case, a suitable but reasonable for the key algorithm will be selected.
|
|
Packit Service |
4684c1 |
|
|
Packit Service |
4684c1 |
@strong{Returns:} @code{GNUTLS_E_SUCCESS} on success, otherwise a negative error code.
|
|
Packit Service |
4684c1 |
@code{GNUTLS_E_ASN1_VALUE_NOT_FOUND} is returned if you didn't set all
|
|
Packit Service |
4684c1 |
information in the certificate request (e.g., the version using
|
|
Packit Service |
4684c1 |
@code{gnutls_x509_crq_set_version()} ).
|
|
Packit Service |
4684c1 |
@end deftypefun
|