gnutls_x509_ext_import_inhibit_anypolicy man page

gnutls_x509_ext_import_inhibit_anypolicy — API function


#include <gnutls/x509-ext.h>

int gnutls_x509_ext_import_inhibit_anypolicy(const gnutls_datum_t * ext, unsigned int * skipcerts);


const gnutls_datum_t * ext

the DER encoded extension data

unsigned int * skipcerts

will hold the number of certificates after which anypolicy is no longer acceptable.


This function will return certificate's value of SkipCerts, by reading the DER data of the Inhibit anyPolicy X.509 extension (

The  skipcerts value is the number of additional certificates that may appear in the path before the anyPolicy (GNUTLS_X509_OID_POLICY_ANY) is no longer acceptable.


zero, or a negative error code in case of parsing error.  If the certificate does not contain the Inhibit anyPolicy extension GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE will be returned.



Reporting Bugs

Report bugs to <>.
Home page:

See Also

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit


3.6.3 gnutls