gnutls_x509_trust_list_set_getissuer_function(3) — Linux manual page

NAME | SYNOPSIS | ARGUMENTS | DESCRIPTION | SINCE | REPORTING BUGS | COPYRIGHT | SEE ALSO | COLOPHON

gnutls_x509_...suer_function(3)  gnutls  gnutls_x509_...suer_function(3)

NAME         top

       gnutls_x509_trust_list_set_getissuer_function - API function

SYNOPSIS         top

       #include <gnutls/x509.h>

       void
       gnutls_x509_trust_list_set_getissuer_function(gnutls_x509_trust_list_t
       tlist, gnutls_x509_trust_list_getissuer_function * func);

ARGUMENTS         top

       gnutls_x509_trust_list_t tlist
                   is a gnutls_x509_trust_list_t type.

       gnutls_x509_trust_list_getissuer_function * func
                   is the callback function

DESCRIPTION         top

       This function sets a callback to be called when the peer's
       certificate chain is incomplete due a missing intermediate
       certificate. The callback may provide the missing certificate for
       use during verification.

       The callback's function prototype is defined in gnutls/x509.h as:

       int (*callback)(gnutls_x509_trust_list_t list, const
       gnutls_x509_crt_t cert, gnutls_x509_crt_t **issuers, unsigned int
       *issuers_size);

       If the callback function is provided then gnutls will call it
       during the certificate verification procedure. The callback may
       wish to use gnutls_x509_crt_get_authority_info_access() to get a
       URI from which to attempt to download the missing issuer
       certificate, if available.

       On a successful call, the callback shall set '*issuers' and
       '*issuers_size' even if the result is empty; in that case
       '*issuers' will point to NULL and allocated using
       gnutls_x509_crt_list_import2(). The ownership of both the array
       and the elements is transferred to the caller and thus the
       application does not need to maintain the memory after the call.

       The callback function should return 0 if the attempt to retrieve
       the issuer certificates for 'crt' succeeded, or non-zero to
       indicate any error occurred during the attempt. In the latter
       case, '*issuers' and '*issuers_size' are not set.

SINCE         top

       3.7.0

REPORTING BUGS         top

       Report bugs to <[email protected]>.
       Home page: https://www.gnutls.org

COPYRIGHT         top

       Copyright © 2001-2023 Free Software Foundation, Inc., and others.
       Copying and distribution of this file, with or without
       modification, are permitted in any medium without royalty
       provided the copyright notice and this notice are preserved.

SEE ALSO         top

       The full documentation for gnutls is maintained as a Texinfo
       manual.  If the /usr/share/doc/gnutls/ directory does not contain
       the HTML form visit

       https://www.gnutls.org/manual/

COLOPHON         top

       This page is part of the GnuTLS (GnuTLS Transport Layer Security
       Library) project.  Information about the project can be found at
       ⟨http://www.gnutls.org/⟩.  If you have a bug report for this
       manual page, send it to [email protected].  This page was obtained
       from the tarball gnutls-3.8.5.tar.xz fetched from
       ⟨http://www.gnutls.org/download.html⟩ on 2024-06-14.  If you
       discover any rendering problems in this HTML version of the page,
       or you believe there is a better or more up-to-date source for
       the page, or you have corrections or improvements to the
       information in this COLOPHON (which is not part of the original
       manual page), send a mail to [email protected]

gnutls                            3.8.5  gnutls_x509_...suer_function(3)