int gnutls_x509_crt_get_crl_dist_points(gnutls_x509_crt_t cert, unsigned int seq, void * ret, size_t * ret_size, unsigned int * reason_flags, unsigned int * critical);
ARGUMENTS
gnutls_x509_crt_t cert
should contain a gnutls_x509_crt_t structure
unsigned int seq
specifies the sequence number of the distribution point (0 for the first one, 1 for the second etc.)
void * ret
is the place where the distribution point will be copied to
size_t * ret_size
holds the size of ret.
unsigned int * reason_flags
Revocation reasons flags.
unsigned int * critical
will be non zero if the extension is marked as critical (may be null)
DESCRIPTION
This function will return the CRL distribution points (2.5.29.31),
contained in the given certificate.
reason_flags should be an ORed sequence of
GNUTLS_CRL_REASON_UNUSED, GNUTLS_CRL_REASON_KEY_COMPROMISE,
GNUTLS_CRL_REASON_CA_COMPROMISE,
GNUTLS_CRL_REASON_AFFILIATION_CHANGED,
GNUTLS_CRL_REASON_SUPERSEEDED,
GNUTLS_CRL_REASON_CESSATION_OF_OPERATION,
GNUTLS_CRL_REASON_CERTIFICATE_HOLD,
GNUTLS_CRL_REASON_PRIVILEGE_WITHDRAWN,
GNUTLS_CRL_REASON_AA_COMPROMISE, or zero for all possible reasons.
This is specified in X509v3 Certificate Extensions. GNUTLS will
return the distribution point type, or a negative error code on
error.
RETURNS
GNUTLS_E_SHORT_MEMORY_BUFFER and updates &ret_size if
&ret_size is not enough to hold the distribution point, or the
type of the distribution point if everything was ok. The type is
one of the enumerated gnutls_x509_subject_alt_name_t. If the
certificate does not have an Alternative name with the specified
sequence number then GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE is
returned.