gnutls_certificate_set_verify_limits man page

gnutls_certificate_set_verify_limits — API function


#include <gnutls/gnutls.h>

void gnutls_certificate_set_verify_limits(gnutls_certificate_credentials_t res, unsigned int max_bits, unsigned int max_depth);


gnutls_certificate_credentials_t res
is a gnutls_certificate_credentials type
unsigned int max_bits
is the number of bits of an acceptable certificate (default 8200)
unsigned int max_depth
is maximum depth of the verification of a certificate chain (default 5)


This function will set some upper limits for the default verification function, gnutls_certificate_verify_peers2(), to avoid denial of service attacks. You can set them to zero to disable limits.

Reporting Bugs

Report bugs to <bugs@gnutls.org>.
Home page: http://www.gnutls.org

See Also

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit



gnutls 3.5.4