gnutls_certificate_set_ocsp_status_request_function2(3) — Linux manual page

NAME | SYNOPSIS | ARGUMENTS | DESCRIPTION | NOTE | RETURNS | SINCE | REPORTING BUGS | COPYRIGHT | SEE ALSO | COLOPHON

gnutls_certif...est_function2(3) gnutls gnutls_certif...est_function2(3)

NAME         top

       gnutls_certificate_set_ocsp_status_request_function2 - API
       function

SYNOPSIS         top

       #include <gnutls/gnutls.h>

       int
       gnutls_certificate_set_ocsp_status_request_function2(gnutls_certificate_credentials_t
       sc, unsigned idx, gnutls_status_request_ocsp_func ocsp_func, void
       * ptr);

ARGUMENTS         top

       gnutls_certificate_credentials_t sc
                   is a gnutls_certificate_credentials_t type.

       unsigned idx
                   is a certificate index as returned by
                   gnutls_certificate_set_key() and friends

       gnutls_status_request_ocsp_func ocsp_func
                   function pointer to OCSP status request callback.

       void * ptr  opaque pointer passed to callback function

DESCRIPTION         top

       This function is to be used by server to register a callback to
       provide OCSP status requests that correspond to the indexed
       certificate chain from the client.  The callback will be invoked
       if the client supplied a status-request OCSP extension.

       The callback function prototype is:

       typedef int (*gnutls_status_request_ocsp_func) (gnutls_session_t
       session, void *ptr, gnutls_datum_t *ocsp_response);

       The callback will be invoked if the client requests an OCSP
       certificate status.  The callback may return
       GNUTLS_E_NO_CERTIFICATE_STATUS, if there is no recent OCSP
       response. If the callback returns GNUTLS_E_SUCCESS, it is
       expected to have the  ocsp_response field set with a valid
       (DER-encoded) OCSP response. The response must be a value
       allocated using gnutls_malloc(), and will be deinitialized by the
       caller.

NOTE         top

       the ability to set multiple OCSP responses per credential
       structure via the index  idx was added in version 3.5.6. To keep
       backwards compatibility, it requires using
       gnutls_certificate_set_flags() with the GNUTLS_CERTIFICATE_API_V2
       flag to make the set certificate functions return an index usable
       by this function.

RETURNS         top

       On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a
       negative error code is returned.

SINCE         top

       3.5.5

REPORTING BUGS         top

       Report bugs to <[email protected]>.
       Home page: https://www.gnutls.org

COPYRIGHT         top

       Copyright © 2001-2023 Free Software Foundation, Inc., and others.
       Copying and distribution of this file, with or without
       modification, are permitted in any medium without royalty
       provided the copyright notice and this notice are preserved.

SEE ALSO         top

       The full documentation for gnutls is maintained as a Texinfo
       manual.  If the /usr/share/doc/gnutls/ directory does not contain
       the HTML form visit

       https://www.gnutls.org/manual/

COLOPHON         top

       This page is part of the GnuTLS (GnuTLS Transport Layer Security
       Library) project.  Information about the project can be found at
       ⟨http:https://www.gnutls.org/⟩.  If you have a bug report for this
       manual page, send it to [email protected].  This page was obtained
       from the tarball gnutls-3.8.2.tar.xz fetched from
       ⟨http:https://www.gnutls.org/download.html⟩ on 2023-12-22.  If you
       discover any rendering problems in this HTML version of the page,
       or you believe there is a better or more up-to-date source for
       the page, or you have corrections or improvements to the
       information in this COLOPHON (which is not part of the original
       manual page), send a mail to [email protected]

gnutls                            3.8.2 gnutls_certif...est_function2(3)