DragonFly On-Line Manual Pages
gnutls_sign_set_secure_for_certs(3) gnutls
NAME
gnutls_sign_set_secure_for_certs - API function
SYNOPSIS
#include <gnutls/gnutls.h>
int gnutls_sign_set_secure_for_certs(gnutls_sign_algorithm_t sign,
unsigned int secure);
ARGUMENTS
gnutls_sign_algorithm_t sign
the sign algorithm
unsigned int secure
whether to mark the sign algorithm secure for certificates
DESCRIPTION
Modify the previous system wide setting that marked sign as secure or
insecure for the use in certificates. Calling this fuction is allowed
only if allowlisting mode is set in the configuration file, and only if
the system-wide TLS priority string has not been initialized yet. The
intended usage is to provide applications with a way to expressly
deviate from the distribution or site defaults inherited from the
configuration file. The modification is composable with further
modifications performed through the priority string mechanism.
This function is not thread-safe and is intended to be called in the
main thread at the beginning of the process execution. When secure is
true, sign is marked as secure for any use unlike
gnutls_sign_set_secure(). Otherwise, it is marked as insecure only for
the use in certificates. Use gnutls_sign_set_secure() to mark it
insecure for any uses.
RETURNS
0 on success or negative error code otherwise.
SINCE
3.7.3
REPORTING BUGS
Report bugs to <bugs@gnutls.org>.
Home page: https://www.gnutls.org
COPYRIGHT
Copyright (C) 2001- Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification,
are permitted in any medium without royalty provided the copyright
notice and this notice are preserved.
SEE ALSO
The full documentation for gnutls is maintained as a Texinfo manual.
If the /usr/local/share/doc/gnutls/ directory does not contain the HTML
form visit
https://www.gnutls.org/manual/
gnutls 3.7.9 gnutls_sign_set_secure_for_certs(3)