HTML rendering created 2025-09-06 byMichael Kerrisk, author ofThe Linux Programming Interface. For details of in-depthLinux/UNIX system programming training courses that I teach, lookhere. Hosting byjambit GmbH. |  |
NAME |SYNOPSIS |ARGUMENTS |DESCRIPTION |RETURNS |SINCE |REPORTING BUGS |COPYRIGHT |SEE ALSO |COLOPHON | |
gnutls_x509_c...ty_info_access(3) gnutlsgnutls_x509_c...ty_info_access(3)gnutls_x509_crt_get_authority_info_access - API function
#include <gnutls/x509.h>int gnutls_x509_crt_get_authority_info_access(gnutls_x509_crt_tcrt, unsigned intseq, intwhat, gnutls_datum_t *data, unsignedint *critical);
gnutls_x509_crt_t crt Holds the certificate unsigned int seq specifies the sequence number of the access descriptor (0 for the first one, 1 for the second etc.) int what what data to get, agnutls_info_access_what_ttype. gnutls_datum_t * data output data to be freed withgnutls_free(). unsigned int * critical pointer to output integer that is set to non-zero if the extension is marked as critical (may beNULL)
Note that a simpler API to access the authority info data is provided bygnutls_x509_aia_get()andgnutls_x509_ext_import_aia(). This function extracts the Authority Information Access (AIA) extension, see RFC 5280 section 4.2.2.1 for more information. The AIA extension holds a sequence of AccessDescription (AD) data. Theseq input parameter is used to indicate which member of the sequence the caller is interested in. The first member is 0, the second member 1 and so on. When theseq value is out of bounds,GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLEis returned. The type of data returned indata is specified viawhat which should begnutls_info_access_what_tvalues. Ifwhat isGNUTLS_IA_ACCESSMETHOD_OIDthendata will hold the accessMethod OID (e.g., "1.3.6.1.5.5.7.48.1"). Ifwhat isGNUTLS_IA_ACCESSLOCATION_GENERALNAME_TYPE,data will hold the accessLocation GeneralName type (e.g., "uniformResourceIdentifier"). Ifwhat isGNUTLS_IA_URI,data will hold the accessLocation URI data. Requesting thiswhat value leads to an error if the accessLocation is not of the "uniformResourceIdentifier" type. Ifwhat isGNUTLS_IA_OCSP_URI,data will hold the OCSP URI. Requesting thiswhat value leads to an error if the accessMethod is not 1.3.6.1.5.5.7.48.1 aka OCSP, or if accessLocation is not of the "uniformResourceIdentifier" type. In that caseGNUTLS_E_UNKNOWN_ALGORITHMwill be returned, andseq should be increased and this function called again. Ifwhat isGNUTLS_IA_CAISSUERS_URI,data will hold the caIssuers URI. Requesting thiswhat value leads to an error if the accessMethod is not 1.3.6.1.5.5.7.48.2 aka caIssuers, or if accessLocation is not of the "uniformResourceIdentifier" type. In that case handle as inGNUTLS_IA_OCSP_URI. Morewhat values may be allocated in the future as needed. Ifdata is NULL, the function does the same without storing the output data, that is, it will setcritical and do error checking as usual. The value of the critical flag is returned in *critical . Supply a NULLcritical if you want the function to make sure the extension is non-critical, as required by RFC 5280.
GNUTLS_E_SUCCESSon success,GNUTLS_E_INVALID_REQUESTon invalidcrt ,GNUTLS_E_CONSTRAINT_ERRORif the extension is incorrectly marked as critical (use a non-NULLcritical to override),GNUTLS_E_UNKNOWN_ALGORITHMif the requested OID does not match (e.g., when usingGNUTLS_IA_OCSP_URI), otherwise a negative error code.
3.0
Report bugs to <bugs@gnutls.org>. Home page:https://www.gnutls.org
Copyright © 2001-2023 Free Software Foundation, Inc., and others. Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.
The full documentation forgnutlsis maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visithttps://www.gnutls.org/manual/
This page is part of theGnuTLS (GnuTLS Transport Layer Security Library) project. Information about the project can be found at ⟨http://www.gnutls.org/⟩. If you have a bug report for this manual page, send it to bugs@gnutls.org. This page was obtained from the tarball fetched from ⟨https://www.gnupg.org/ftp/gcrypt/gnutls/⟩ on 2025-08-11. If you discover any rendering problems in this HTML version of the page, or you believe there is a better or more up-to-date source for the page, or you have corrections or improvements to the information in this COLOPHON (which isnot part of the original manual page), send a mail to man-pages@man7.orggnutls 3.8.10gnutls_x509_c...ty_info_access(3)HTML rendering created 2025-09-06 byMichael Kerrisk, author ofThe Linux Programming Interface. For details of in-depthLinux/UNIX system programming training courses that I teach, lookhere. Hosting byjambit GmbH. | |