gnutls_x509_crt_get_name_constraints(3) — Linux manual page

gnutls_x509_c...e_constraints(3) gnutls gnutls_x509_c...e_constraints(3)

NAME 

       gnutls_x509_crt_get_name_constraints - API function

SYNOPSIS 

       #include <gnutls/x509.h>

       int gnutls_x509_crt_get_name_constraints(gnutls_x509_crt_t crt,
       gnutls_x509_name_constraints_t nc, unsigned int flags, unsigned
       int * critical);

ARGUMENTS 

       gnutls_x509_crt_t crt
                   should contain a gnutls_x509_crt_t type

       gnutls_x509_name_constraints_t nc
                   The nameconstraints intermediate type

       unsigned int flags
                   zero or GNUTLS_EXT_FLAG_APPEND

       unsigned int * critical
                   the extension status

DESCRIPTION 

       This function will return an intermediate type containing the
       name constraints of the provided CA certificate. That structure
       can be used in combination with
       gnutls_x509_name_constraints_check() to verify whether a server's
       name is in accordance with the constraints.

       When the  flags is set to GNUTLS_EXT_FLAG_APPEND, then if the  nc
       structure is empty this function will behave identically as if
       the flag was not set.  Otherwise if there are elements in the  nc
       structure then the constraints will be merged with the existing
       constraints following RFC5280 p6.1.4 (excluded constraints will
       be appended, permitted will be intersected).

       Note that  nc must be initialized prior to calling this function.

RETURNS 

       On success, GNUTLS_E_SUCCESS (0) is returned,
       GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE if the extension is not
       present, otherwise a negative error value.

SINCE 

       3.3.0

REPORTING BUGS 

       Report bugs to <bugs@gnutls.org>.
       Home page: https://www.gnutls.org

COPYRIGHT 

       Copyright © 2001-2023 Free Software Foundation, Inc., and others.
       Copying and distribution of this file, with or without
       modification, are permitted in any medium without royalty
       provided the copyright notice and this notice are preserved.

SEE ALSO 

       The full documentation for gnutls is maintained as a Texinfo
       manual.  If the /usr/share/doc/gnutls/ directory does not contain
       the HTML form visit

       https://www.gnutls.org/manual/

COLOPHON 

       This page is part of the GnuTLS (GnuTLS Transport Layer Security
       Library) project.  Information about the project can be found at
       ⟨http://www.gnutls.org/⟩.  If you have a bug report for this
       manual page, send it to bugs@gnutls.org.  This page was obtained
       from the tarball gnutls-3.8.5.tar.xz fetched from
       ⟨http://www.gnutls.org/download.html⟩ on 2024-06-14.  If you
       discover any rendering problems in this HTML version of the page,
       or you believe there is a better or more up-to-date source for
       the page, or you have corrections or improvements to the
       information in this COLOPHON (which is not part of the original
       manual page), send a mail to man-pages@man7.org

gnutls                            3.8.5 gnutls_x509_c...e_constraints(3)

...
https://man7.org/linux/man-pages/man3/gnutls_x509_crt_get_name_constraints.3.html