SYNOPSIS

#include <gnutls/x509.h>

int gnutls_x509_crq_get_key_usage(gnutls_x509_crq_t crq, unsigned int * key_usage, unsigned int * critical);

ARGUMENTS

gnutls_x509_crq_t crq

should contain a gnutls_x509_crq_t structure

unsigned int * key_usage

where the key usage bits will be stored

unsigned int * critical

will be non-zero if the extension is marked as critical

DESCRIPTION

This function will return certificate's key usage, by reading the keyUsage X.509 extension (2.5.29.15). The key usage value will ORed values of the: GNUTLS_KEY_DIGITAL_SIGNATURE, GNUTLS_KEY_NON_REPUDIATION, GNUTLS_KEY_KEY_ENCIPHERMENT, GNUTLS_KEY_DATA_ENCIPHERMENT, GNUTLS_KEY_KEY_AGREEMENT, GNUTLS_KEY_KEY_CERT_SIGN, GNUTLS_KEY_CRL_SIGN, GNUTLS_KEY_ENCIPHER_ONLY, GNUTLS_KEY_DECIPHER_ONLY.

RETURNS

the certificate key usage, or a negative error code in case of parsing error. If the certificate does not contain the keyUsage extension GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE will be returned.

SINCE

2.8.0

REPORTING BUGS

Report bugs to <[email protected]>.

Home page: http://www.gnutls.org

COPYRIGHT

Copyright © 2001-2014 Free Software Foundation, Inc..

Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.

RELATED TO gnutls_x509_crq_get_key_usage…

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit

http://www.gnutls.org/manual/