Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

gnutls_ocsp_resp_verify(3) [centos man page]

gnutls_ocsp_resp_verify(3)					      gnutls						gnutls_ocsp_resp_verify(3)

NAME

       gnutls_ocsp_resp_verify - API function

SYNOPSIS

       #include <gnutls/ocsp.h>

       int gnutls_ocsp_resp_verify(gnutls_ocsp_resp_t resp, gnutls_x509_trust_list_t trustlist, unsigned int * verify, unsigned int flags);

ARGUMENTS

       gnutls_ocsp_resp_t resp
		   should contain a gnutls_ocsp_resp_t structure

       gnutls_x509_trust_list_t trustlist
		   trust anchors as a gnutls_x509_trust_list_t structure

       unsigned int * verify
		   output variable with verification status, an gnutls_ocsp_cert_status_t

       unsigned int flags
		   verification flags, 0 for now.

DESCRIPTION

       Verify  signature of the Basic OCSP Response against the public key in the certificate of a trusted signer.  The  trustlist should be popu-
       lated with trust anchors.  The function will extract the signer certificate from the Basic OCSP Response and will  verify  it  against  the
       trustlist .  A trusted signer is a certificate that is either in  trustlist , or it is signed directly by a certificate in
	trustlist and has the id-ad-ocspSigning Extended Key Usage bit set.

       The  output   verify  variable  will  hold  verification  status codes (e.g., GNUTLS_OCSP_VERIFY_SIGNER_NOT_FOUND, GNUTLS_OCSP_VERIFY_INSE-
       CURE_ALGORITHM) which are only valid if the function returned GNUTLS_E_SUCCESS.

       Note that the function returns GNUTLS_E_SUCCESS even when verification failed.  The caller must always inspect the  verify variable to find
       out the verification status.

       The  flags variable should be 0 for now.

RETURNS

       On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative error value.

REPORTING BUGS

       Report bugs to <bug-gnutls@gnu.org>.
       General guidelines for reporting bugs: http://www.gnu.org/gethelp/
       GnuTLS home page: http://www.gnu.org/software/gnutls/

COPYRIGHT

       Copyright (C) 2012 Free Software Foundation, Inc..
       Copying	and  distribution  of  this file, with or without modification, are permitted in any medium without royalty provided the copyright
       notice and this notice are preserved.

SEE ALSO

       The full documentation for gnutls is maintained as a Texinfo manual.  If the info and gnutls programs are properly installed at your  site,
       the command

	      info gnutls

       should give you access to the complete manual.  As an alternative you may obtain the manual from:

	      http://www.gnu.org/software/gnutls/manual/

gnutls								      3.1.15						gnutls_ocsp_resp_verify(3)

Check Out this Related Man Page

gnutls_openpgp_crt_verify_ring(3)				      gnutls					 gnutls_openpgp_crt_verify_ring(3)

NAME

       gnutls_openpgp_crt_verify_ring - API function

SYNOPSIS

       #include <gnutls/openpgp.h>

       int gnutls_openpgp_crt_verify_ring(gnutls_openpgp_crt_t key, gnutls_openpgp_keyring_t keyring, unsigned int flags, unsigned int * verify);

ARGUMENTS

       gnutls_openpgp_crt_t key
		   the structure that holds the key.

       gnutls_openpgp_keyring_t keyring
		   holds the keyring to check against

       unsigned int flags
		   unused (should be 0)

       unsigned int * verify
		   will hold the certificate verification output.

DESCRIPTION

       Verify all signatures in the key, using the given set of keys (keyring).

       The  key  verification output will be put in  verify and will be one or more of the gnutls_certificate_status_t enumerated elements bitwise
       or'd.

       Note that this function does not verify using any "web of trust".  You may use GnuPG for that purpose, or any other external  PGP  applica-
       tion.

RETURNS

       GNUTLS_E_SUCCESS on success, or an error code.

REPORTING BUGS

       Report bugs to <bug-gnutls@gnu.org>.
       General guidelines for reporting bugs: http://www.gnu.org/gethelp/
       GnuTLS home page: http://www.gnu.org/software/gnutls/

COPYRIGHT

       Copyright (C) 2012 Free Software Foundation, Inc..
       Copying	and  distribution  of  this file, with or without modification, are permitted in any medium without royalty provided the copyright
       notice and this notice are preserved.

SEE ALSO

       The full documentation for gnutls is maintained as a Texinfo manual.  If the info and gnutls programs are properly installed at your  site,
       the command

	      info gnutls

       should give you access to the complete manual.  As an alternative you may obtain the manual from:

	      http://www.gnu.org/software/gnutls/manual/

gnutls								      3.1.15					 gnutls_openpgp_crt_verify_ring(3)
Man Page