is a credentials structure.
const char * response_file
a filename of the OCSP response
is a certificate index as returned by
gnutls_certificate_set_key() and friends
the ability to set multiple OCSP responses per credential
structure via the index idx was added in version 3.5.6. To keep
backwards compatibility, it requires using
gnutls_certificate_set_flags() with the GNUTLS_CERTIFICATE_API_V2
flag to make the set certificate functions return an index usable
by this function.
This function can be called multiple times since GnuTLS 3.6.3
when multiple responses which apply to the chain are available.
If the response provided does not match any certificates present
in the chain, the code GNUTLS_E_OCSP_MISMATCH_WITH_CERTS is
returned. To revert to the previous behavior set the flag
GNUTLS_CERTIFICATE_SKIP_OCSP_RESPONSE_CHECK in the certificate
credentials structure. In that case, only the end-certificate's
OCSP response can be set. If the response is already expired at
the time of loading the code GNUTLS_E_EXPIRED is returned.
To revert to the previous behavior of this function which does
not return any errors, set the flag
This page is part of the GnuTLS (GnuTLS Transport Layer Security
Library) project. Information about the project can be found at
⟨http://www.gnutls.org/⟩. If you have a bug report for this
manual page, send it to firstname.lastname@example.org. This page was obtained
from the tarball gnutls-3.7.2.tar.xz fetched from
⟨http://www.gnutls.org/download.html⟩ on 2021-06-20. If you
discover any rendering problems in this HTML version of the page,
or you believe there is a better or more up-to-date source for
the page, or you have corrections or improvements to the
information in this COLOPHON (which is not part of the original
manual page), send a mail to email@example.com