SYNOPSIS
#include <nng/nng.h>
#include <nng/supplemental/tls/tls.h>
int nng_tls_config_ca_cert(nni_tls_config *cfg, const char *chain,
const char *crl);
DESCRIPTION
The nng_tls_config_ca_chain()
function configures a certificate or
certificate chain to be used when validating peers using the configuration
cfg.
Certificates must be configured when using the authentication mode
NNG_TLS_AUTH_MODE_REQUIRED .
|
This function may be called multiple times, to add additional chains to a configuration, without affecting those added previously. |
The certificates located in chain must be a zero-terminated C string in PEM format. Multiple certificates may appear concatenated together, with the leaf certificate listed first. together.
The crl may be NULL
, or may also be a C string containing a PEM format
certificate revocation list for the associated authority.
RETURN VALUES
This function returns 0 on success, and non-zero otherwise.
ERRORS
NNG_ENOMEM
-
Insufficient memory is available.
NNG_EBUSY
-
The configuration cfg is already in use, and cannot be modified.
NNG_EINVAL
-
An invalid chain or crl was supplied.