gnutls_x509_crt_list_import (3) - Linux Manuals

gnutls_x509_crt_list_import: API function


gnutls_x509_crt_list_import - API function


#include <gnutls/x509.h>

int gnutls_x509_crt_list_import(gnutls_x509_crt_t * certs, unsigned int * cert_max, const gnutls_datum_t * data, gnutls_x509_crt_fmt_t format, unsigned int flags);


gnutls_x509_crt_t * certs
The structures to store the parsed certificate. Must not be initialized.
unsigned int * cert_max
Initially must hold the maximum number of certs. It will be updated with the number of certs available.
const gnutls_datum_t * data
The PEM encoded certificate.
gnutls_x509_crt_fmt_t format
One of DER or PEM.
unsigned int flags
must be (0) or an OR'd sequence of gnutls_certificate_import_flags.


This function will convert the given PEM encoded certificate list to the native gnutls_x509_crt_t format. The output will be stored in certs . They will be automatically initialized.

The flag GNUTLS_X509_CRT_LIST_IMPORT_FAIL_IF_EXCEED will cause import to fail if the certificates in the provided buffer are more than the available structures. The GNUTLS_X509_CRT_LIST_FAIL_IF_UNSORTED flag will cause the function to fail if the provided list is not sorted from subject to issuer.

If the Certificate is PEM encoded it should have a header of "X509 CERTIFICATE", or "CERTIFICATE".


the number of certificates read or a negative error value.


Report bugs to <bugs [at]>.
Home page:


Copyright © 2001-2014 Free Software Foundation, Inc..
Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.


The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit