gnutls_certificate_set_x509_key_mem — Used to set keys in a gnutls_certificate_credentials_t structure
#include <gnutls/gnutls.h>
int
gnutls_certificate_set_x509_key_mem( |
gnutls_certificate_credentials_t | res, |
const gnutls_datum_t * | cert, | |
const gnutls_datum_t * | key, | |
gnutls_x509_crt_fmt_t | type) ; |
is an gnutls_certificate_credentials_t structure.
contains a certificate list (path) for the specified private key
is the private key, or NULL
is PEM or DER
This function sets a certificate/private key pair in the gnutls_certificate_credentials_t structure. This function may be called more than once (in case multiple keys/certificates exist for the server).
RSA PKCS−1 encoded private keys, DSA private keys.
DSA private keys are encoded the OpenSSL way, which is an ASN.1 DER sequence of 6 INTEGERs − version, p, q, g, pub, priv.
Note that the keyUsage (2.5.29.15) PKIX extension in X.509 certificates is supported. This means that certificates intended for signing cannot be used for ciphersuites that require encryption.
If the certificate and the private key are given in PEM encoding then the strings that hold their values must be null terminated.
The key
may be
NULL
if you are using a sign
callback, see gnutls_sign_callback_set
().