gnutls_sign_set_secure_for_certs - API function

gnutls_sign_algorithm_t sign the sign algorithm unsigned int secure whether to mark the sign algorithm secure for certificates

Copyright © 2001-2023 Free Software Foundation, Inc., and others. Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.

Modify the previous system wide setting that marked sign as secure or insecure for the use in certificates. Calling this function is allowed only if allowlisting mode is set in the configuration file, and only if the system-wide TLS priority string has not been initialized yet. The intended usage is to provide applications with a way to expressly deviate from the distribution or site defaults inherited from the configuration file. The modification is composable with further modifications performed through the priority string mechanism. This function is not thread-safe and is intended to be called in the main thread at the beginning of the process execution. When secure is true, sign is marked as secure for any use unlike gnutls_sign_set_secure(). Otherwise, it is marked as insecure only for the use in certificates. Use gnutls_sign_set_secure() to mark it insecure for any uses.

gnutls_sign_set_secure_for_certs - API function

Report bugs to <bugs@gnutls.org>. Home page: https://www.gnutls.org

0 on success or negative error code otherwise.

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit https://www.gnutls.org/manual/ gnutls 3.8.9 gnutls_sign_set_secure_for_certs(3)

3.7.3