gnutls_certificate_set_ocsp_status_request_file - API function
sc, const char * response_file, unsigned
- gnutls_certificate_credentials_t sc
- is a credentials structure.
- const char * response_file
- a filename of the OCSP response
- unsigned idx
- is a certificate index as returned by gnutls_certificate_set_key()
This function loads the provided OCSP response. It will be sent to the client if
requests an OCSP certificate status for the certificate chain specified by
the ability to set multiple OCSP responses per credential structure via the
was added in version 3.5.6. To keep backwards compatibility,
it requires using gnutls_certificate_set_flags()
flag to make the set certificate functions
return an index usable by this function.
This function can be called multiple times since GnuTLS 3.6.3 when multiple
responses which apply to the chain are available. If the response provided
does not match any certificates present in the chain, the code
is returned. To revert to the
previous behavior set the flag
in the certificate
credentials structure. In that case, only the end-certificate's OCSP response
can be set. If the response is already expired at the time of loading the code
To revert to the previous behavior of this function which does not return any
errors, set the flag GNUTLS_CERTIFICATE_SKIP_OCSP_RESPONSE_CHECK
On success, GNUTLS_E_SUCCESS
(0) is returned, otherwise a negative error
code is returned.
Report bugs to <firstname.lastname@example.org>.
Home page: https://www.gnutls.org
Copyright © 2001-2019 Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification, are
permitted in any medium without royalty provided the copyright notice and this
notice are preserved.
The full documentation for gnutls
is maintained as a Texinfo manual. If
the /usr/share/doc/gnutls/ directory does not contain the HTML form visit