gnutls_certificate_set_ocsp_status_request_mem(3) — Linux manual page



NAME         top

       gnutls_certificate_set_ocsp_status_request_mem - API function

SYNOPSIS         top

       #include <gnutls/gnutls.h>

       sc, const gnutls_datum_t * resp_data, unsigned idx,
       gnutls_x509_crt_fmt_t fmt);

ARGUMENTS         top

       gnutls_certificate_credentials_t sc
                   is a credentials structure.

       const gnutls_datum_t * resp_data
                   a memory buffer holding an OCSP response

       unsigned idx
                   is a certificate index as returned by
                   gnutls_certificate_set_key() and friends

       gnutls_x509_crt_fmt_t fmt
                   is PEM or DER

DESCRIPTION         top

       This function sets the OCSP responses to be sent to the peer for
       the certificate chain specified by  idx . When  fmt is set to
       PEM, multiple responses can be loaded.

NOTE         top

       the ability to set multiple OCSP responses per credential
       structure via the index  idx was added in version 3.5.6. To keep
       backwards compatibility, it requires using
       gnutls_certificate_set_flags() with the GNUTLS_CERTIFICATE_API_V2
       flag to make the set certificate functions return an index usable
       by this function.

       This function must be called after setting any certificates, and
       cannot be used for certificates that are provided via a callback
       -- that is when gnutls_certificate_set_retrieve_function() is

       This function can be called multiple times when multiple
       responses which apply to the certificate chain are available.  If
       the response provided does not match any certificates present in
       the chain, the code GNUTLS_E_OCSP_MISMATCH_WITH_CERTS is
       returned.  If the response is already expired at the time of
       loading the code GNUTLS_E_EXPIRED is returned.

RETURNS         top

       On success, the number of loaded responses is returned, otherwise
       a negative error code.

SINCE         top


REPORTING BUGS         top

       Report bugs to <>.
       Home page:

COPYRIGHT         top

       Copyright © 2001- Free Software Foundation, Inc., and others.
       Copying and distribution of this file, with or without
       modification, are permitted in any medium without royalty
       provided the copyright notice and this notice are preserved.

SEE ALSO         top

       The full documentation for gnutls is maintained as a Texinfo
       manual.  If the /usr/share/doc/gnutls/ directory does not contain
       the HTML form visit 

COLOPHON         top

       This page is part of the GnuTLS (GnuTLS Transport Layer Security
       Library) project.  Information about the project can be found at
       ⟨⟩.  If you have a bug report for this
       manual page, send it to  This page was obtained
       from the tarball gnutls-3.7.2.tar.xz fetched from
       ⟨⟩ on 2021-08-27.  If you
       discover any rendering problems in this HTML version of the page,
       or you believe there is a better or more up-to-date source for
       the page, or you have corrections or improvements to the
       information in this COLOPHON (which is not part of the original
       manual page), send a mail to

gnutls                 gnutls_cert3i.f7i.c2ate_set_ocsp_status_request_mem(3)