·

gnutls_pkcs11_privkey_generate3 (3) Linux Manual Page

ByLinux Manual Posted on

gnutls_pkcs11_privkey_generate3 – API function

Synopsis

#include <gnutls/pkcs11.h>

int gnutls_pkcs11_privkey_generate3(const char * url, gnutls_pk_algorithm_t pk, unsigned int bits, const char * label, const gnutls_datum_t * cid, gnutls_x509_crt_fmt_t fmt, gnutls_datum_t * pubkey, unsigned int flags);

Arguments

const char * url
a token URL
gnutls_pk_algorithm_t pk
the public key algorithm
unsigned int bits
the security bits
const char * label
a label
const gnutls_datum_t * cid
The CKA_ID to use for the new object
gnutls_x509_crt_fmt_t fmt
the format of output params. PEM or DER
gnutls_datum_t * pubkey
will hold the public key (may be NULL)
unsigned int flags
zero or an OR’ed sequence of GNUTLS_PKCS11_OBJ_FLAGs

Description

This function will generate a private key in the specified by the url token. The private key will be generate within the token and will not be exportable. This function will store the DER-encoded public key in the SubjectPublicKeyInfo format in pubkey . The pubkey should be deinitialized using gnutls_free().

Note that when generating an elliptic curve key, the curve can be substituted in the place of the bits parameter using the GNUTLS_CURVE_TO_BITS() macro.

Returns

On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative error value.

Since

3.3.26

Reporting Bugs

Report bugs to <bugs [at] gnutls.org>.
Home page: http://www.gnutls.org

Copyright

Copyright © 2001-2014 Free Software Foundation, Inc..
Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.

See Also

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit
http://www.gnutls.org/manual/

Leave a Reply

Your email address will not be published. Required fields are marked *