Name

gnutls_x509_crt_sign2 — Sign a certificate with a key

Synopsis

#include <gnutls/x509.h>
int gnutls_x509_crt_sign2( gnutls_x509_crt_t crt,
  gnutls_x509_crt_t issuer,
  gnutls_x509_privkey_t issuer_key,
  gnutls_digest_algorithm_t dig,
  unsigned int flags);
 

ARGUMENTS

gnutls_x509_crt_t crt

a certificate of type gnutls_x509_crt_t

gnutls_x509_crt_t issuer

is the certificate of the certificate issuer

gnutls_x509_privkey_t issuer_key

holds the issuer's private key

gnutls_digest_algorithm_t dig

The message digest to use, GNUTLS_DIG_SHA1 is a safe choice

unsigned int flags

must be 0

DESCRIPTION

This function will sign the certificate with the issuer's private key, and will copy the issuer's information into the certificate.

This must be the last step in a certificate generation since all the previously set parameters are now signed.

RETURNS

On success, GNUTLS_E_SUCCESS is returned, otherwise a negative error value.

REPORTING BUGS

Report bugs to <[email protected]>. GnuTLS home page: http://www.gnu.org/software/gnutls/ General help using GNU software: http://www.gnu.org/gethelp/

SEE ALSO

The full documentation for gnutls is maintained as a Texinfo manual. If the info and gnutls programs are properly installed at your site, the command

info gnutls

should give you access to the complete manual.

COPYRIGHT

Copyright © 2008 Free Software Foundation.

Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.