gnutls_certificate_set_ocsp_status_request_mem - API function
sc, const gnutls_datum_t * resp_data, unsigned
idx, gnutls_x509_crt_fmt_t fmt);
- gnutls_certificate_credentials_t sc
- is a credentials structure.
- const gnutls_datum_t * resp_data
- a memory buffer holding an OCSP response
- unsigned idx
- is a certificate index as returned by gnutls_certificate_set_key()
- gnutls_x509_crt_fmt_t fmt
- is PEM or DER
This function sets the OCSP responses to be sent to the peer for the certificate
chain specified by idx
. When fmt
is set to PEM, multiple
responses can be loaded.
the ability to set multiple OCSP responses per credential structure via the
was added in version 3.5.6. To keep backwards compatibility,
it requires using gnutls_certificate_set_flags()
flag to make the set certificate functions
return an index usable by this function.
This function must be called after setting any certificates, and cannot be used
for certificates that are provided via a callback -- that is when
This function can be called multiple times when multiple responses which apply
to the certificate chain are available. If the response provided does not
match any certificates present in the chain, the code
is returned. If the response is
already expired at the time of loading the code GNUTLS_E_EXPIRED
On success, the number of loaded responses is returned, otherwise a negative
Report bugs to <firstname.lastname@example.org>.
Home page: https://www.gnutls.org
Copyright © 2001-2019 Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification, are
permitted in any medium without royalty provided the copyright notice and this
notice are preserved.
The full documentation for gnutls
is maintained as a Texinfo manual. If
the /usr/share/doc/gnutls/ directory does not contain the HTML form visit