gnutls_x509_crt_get_inhibit_anypolicy man page

gnutls_x509_crt_get_inhibit_anypolicy — API function


#include <gnutls/x509.h>

int gnutls_x509_crt_get_inhibit_anypolicy(gnutls_x509_crt_t cert, unsigned int * skipcerts, unsigned int * critical);


gnutls_x509_crt_t cert

should contain a gnutls_x509_crt_t type

unsigned int * skipcerts

will hold the number of certificates after which anypolicy is no longer acceptable.

unsigned int * critical

will be non-zero if the extension is marked as critical


This function will return certificate's value of the SkipCerts, i.e., the Inhibit anyPolicy X.509 extension (

The returned value is the number of additional certificates that may appear in the path before the anyPolicy is no longer acceptable.


zero on success, or a negative error code in case of parsing error.  If the certificate does not contain the Inhibit anyPolicy extension GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE will be returned.



Reporting Bugs

Report bugs to <>.
Home page:

See Also

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit


3.6.2 gnutls