gnutls_ocsp_req_add_cert_id man page

gnutls_ocsp_req_add_cert_id — API function


#include <gnutls/ocsp.h>

int gnutls_ocsp_req_add_cert_id(gnutls_ocsp_req_t req, gnutls_digest_algorithm_t digest, const gnutls_datum_t * issuer_name_hash, const gnutls_datum_t * issuer_key_hash, const gnutls_datum_t * serial_number);


gnutls_ocsp_req_t req
should contain a gnutls_ocsp_req_t type
gnutls_digest_algorithm_t digest
hash algorithm, a gnutls_digest_algorithm_t value
const gnutls_datum_t * issuer_name_hash
hash of issuer's DN
const gnutls_datum_t * issuer_key_hash
hash of issuer's public key
const gnutls_datum_t * serial_number
serial number of certificate to check


This function will add another request to the OCSP request for a particular certificate having the issuer name hash of
issuer_name_hash and issuer key hash of issuer_key_hash (both hashed using digest ) and serial number serial_number .

The information needed corresponds to the CertID structure:

<informalexample><programlisting> CertID ::= SEQUENCE { hashAlgorithm AlgorithmIdentifier, issuerNameHash OCTET STRING, -- Hash of Issuer's DN issuerKeyHash OCTET STRING, -- Hash of Issuers public key serialNumber CertificateSerialNumber } </programlisting></informalexample>


On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative error code is returned.

Reporting Bugs

Report bugs to <>.
Home page:

See Also

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit


3.5.8 gnutls gnutls