NAME¶

gnutls_x509_trust_list_verify_named_crt - API function

SYNOPSIS¶

#include <gnutls/x509.h>

int gnutls_x509_trust_list_verify_named_crt(gnutls_x509_trust_list_t list, gnutls_x509_crt_t cert, const void * name, size_t name_size, unsigned int flags, unsigned int * voutput, gnutls_verify_output_function func);

ARGUMENTS¶

gnutls_x509_trust_list_t list: The structure of the list

gnutls_x509_crt_t cert: is the certificate to be verified

const void * name: is the certificate's name

size_t name_size: is the certificate's name size

unsigned int flags: Flags that may be used to change the verification algorithm. Use OR of the gnutls_certificate_verify_flags enumerations.

unsigned int * voutput: will hold the certificate verification output.

gnutls_verify_output_function func: If non-null will be called on each chain element verification with the output.

DESCRIPTION¶

This function will try to find a certificate that is associated with the provided name --see gnutls_x509_trust_list_add_named_crt(). If a match is found the certificate is considered valid. In addition to that this function will also check CRLs. The voutput parameter will hold an OR'ed sequence of gnutls_certificate_status_t flags.

Additionally a certificate verification profile can be specified from the ones in gnutls_certificate_verification_profiles_t by ORing the result of GNUTLS_PROFILE_TO_VFLAGS() to the verification flags.

RETURNS¶

On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative error value.

SINCE¶

3.0.0

REPORTING BUGS¶

Report bugs to <bugs@gnutls.org>.

Home page: http://www.gnutls.org

COPYRIGHT¶

Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.

Source file:	gnutls_x509_trust_list_verify_named_crt.3.en.gz (from gnutls-doc 3.3.8-6+deb8u7)
Source last updated:	2017-06-24T16:01:12Z
Converted to HTML:	2019-03-09T22:20:44Z