1gnutls_sign_set_secure_for_certs(3) gnutls gnutls_sign_set_secure_for_certs(3)
2
6 gnutls_sign_set_secure_for_certs - API function
7
9 #include <gnutls/gnutls.h>
10 int gnutls_sign_set_secure_for_certs(gnutls_sign_algorithm_t sign, un‐
12 signed int secure);
13
15 gnutls_sign_algorithm_t sign
16 the sign algorithm
17 unsigned int secure
19 whether to mark the sign algorithm secure for certificates
20
22 Modify the previous system wide setting that marked sign as secure or
23 insecure for the use in certificates. Calling this function is allowed
24 only if allowlisting mode is set in the configuration file, and only if
25 the system-wide TLS priority string has not been initialized yet. The
26 intended usage is to provide applications with a way to expressly devi‐
27 ate from the distribution or site defaults inherited from the configu‐
28 ration file. The modification is composable with further modifications
29 performed through the priority string mechanism.
30 This function is not thread-safe and is intended to be called in the
32 main thread at the beginning of the process execution. When secure is
33 true, sign is marked as secure for any use unlike gnutls_sign_set_se‐
34 cure(). Otherwise, it is marked as insecure only for the use in cer‐
35 tificates. Use gnutls_sign_set_secure() to mark it insecure for any
36 uses.
37
39 0 on success or negative error code otherwise.
40
42 3.7.3
43
45 Report bugs to <bugs@gnutls.org>.
46 Home page: https://www.gnutls.org
47
50 Copyright © 2001-2023 Free Software Foundation, Inc., and others.
51 Copying and distribution of this file, with or without modification,
52 are permitted in any medium without royalty provided the copyright no‐
53 tice and this notice are preserved.
54
56 The full documentation for gnutls is maintained as a Texinfo manual.
57 If the /usr/share/doc/gnutls/ directory does not contain the HTML form
58 visit
59 https://www.gnutls.org/manual/
61gnutls 3.8.2 gnutls_sign_set_secure_for_certs(3)