gnutls_pkcs7_sign(3) gnutls gnutls_pkcs7_sign(3)

gnutls_pkcs7_sign - API function

#include <gnutls/pkcs7.h>

int gnutls_pkcs7_sign(gnutls_pkcs7_t pkcs7, gnutls_x509_crt_t signer, gnutls_privkey_t signer_key, const gnutls_datum_t * data, gnutls_pkcs7_attrs_t signed_attrs, gnutls_pkcs7_attrs_t unsigned_attrs, gnutls_digest_algorithm_t dig, unsigned flags);

should contain a gnutls_pkcs7_t type
the certificate to sign the structure
the key to sign the structure
The data to be signed or NULL if the data are already embedded
Any additional attributes to be included in the signed ones (or NULL)
Any additional attributes to be included in the unsigned ones (or NULL)
The digest algorithm to use for signing
Should be zero or one of GNUTLS_PKCS7 flags

This function will add a signature in the provided PKCS 7 structure for the provided data. Multiple signatures can be made with different signers.

The available flags are: GNUTLS_PKCS7_EMBED_DATA, GNUTLS_PKCS7_INCLUDE_TIME, GNUTLS_PKCS7_INCLUDE_CERT, and GNUTLS_PKCS7_WRITE_SPKI. They are explained in the gnutls_pkcs7_sign_flags definition.

On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative error value.

3.4.2

Report bugs to <bugs@gnutls.org>.
Home page: https://www.gnutls.org

Copyright © 2001-2023 Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit

3.8.8 gnutls