gnutls_pkcs11_privkey_generate2 - Man Page
API function
Synopsis
#include <gnutls/pkcs11.h>
int gnutls_pkcs11_privkey_generate2(const char * url, gnutls_pk_algorithm_t pk, unsigned int bits, const char * label, gnutls_x509_crt_fmt_t fmt, gnutls_datum_t * pubkey, unsigned int flags);
Arguments
- const char * url
a token URL
- gnutls_pk_algorithm_t pk
the public key algorithm
- unsigned int bits
the security bits
- const char * label
a label
- gnutls_x509_crt_fmt_t fmt
the format of output params. PEM or DER
- gnutls_datum_t * pubkey
will hold the public key (may be NULL)
- unsigned int flags
zero or an OR'ed sequence of GNUTLS_PKCS11_OBJ_FLAGs
Description
This function will generate a private key in the specified by the url token. The private key will be generate within the token and will not be exportable. This function will store the DER-encoded public key in the SubjectPublicKeyInfo format in pubkey . The pubkey should be deinitialized using gnutls_free().
Note that when generating an elliptic curve key, the curve can be substituted in the place of the bits parameter using the GNUTLS_CURVE_TO_BITS() macro.
Returns
On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative error value.
Since
3.1.5
Reporting Bugs
Report bugs to <bugs@gnutls.org>.
Home page: https://www.gnutls.org
Copyright
Copyright © 2001-2023 Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.
See Also
The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit