Manpage of 'gnutls_x509_crt_list_verify' on UHLU - BSD System Documentation,
Programming Reference, Manual Pages and Source Code
All manual pages         All RFC pages
Common page
for gnutls_x509_crt_list_verify		 Other pages
for gnutls_x509_crt_list_verify		 More pages
containing gnutls_x509_crt_list_verify

Section 3 manual page or howto for 'gnutls_x509_crt_list_verify'  

gnutls_x509_crt_list_verify(3)	    gnutls	gnutls_x509_crt_list_verify(3)



NAME
       gnutls_x509_crt_list_verify - This function verifies the given certifi-
       cate list

SYNOPSIS
       #include <gnutls/x509.h>

       int gnutls_x509_crt_list_verify(const  gnutls_x509_crt_t  *  cert_list,
       int   cert_list_length,	 const	 gnutls_x509_crt_t   *	 CA_list,  int
       CA_list_length,	  const    gnutls_x509_crl_t	*    CRL_list,	   int
       CRL_list_length, unsigned int flags, unsigned int * verify);

ARGUMENTS
       const gnutls_x509_crt_t * cert_list

		   is the certificate list to be verified

       int cert_list_length

		   holds the number of certificate in cert_list

       const gnutls_x509_crt_t * CA_list

		   is the CA list which will be used in verification

       int CA_list_length

		   holds the number of CA certificate in CA_list

       const gnutls_x509_crl_t * CRL_list

		   holds a list of CRLs.

       int CRL_list_length

		   the length of CRL list.

       unsigned int flags

		   Flags  that	may  be  used to change the verification algo-
		   rithm. Use OR of the  gnutls_certificate_verify_flags  enu-
		   merations.

       unsigned int * verify

		   will hold the certificate verification output.

DESCRIPTION
       This  function will try to verify the given certificate list and return
       its status.  If no flags are specified (0), this function will use  the
       basicConstraints  (2.5.29.19)  PKIX  extension.	This means that only a
       certificate authority is allowed to sign a certificate.

       You must also check the peer's name in order to check if  the  verified
       certificate belongs to the actual peer.

       The  certificate  verification output will be put in verify and will be
       one or more of the gnutls_certificate_status_t enumerated elements bit-
       wise   or'd.    For   a	 more	detailed   verification   status   use
       gnutls_x509_crt_verify() per list element.

GNUTLS_CERT_INVALID
       the certificate chain is not valid.

GNUTLS_CERT_REVOKED
       a certificate in the chain has been revoked.

RETURNS
       On success, GNUTLS_E_SUCCESS is returned, otherwise  a  negative  error
       value.and a negative value in case of an error.

REPORTING BUGS
       Report	 bugs	 to    <bug-gnutls@gnu.org>.	 GnuTLS   home	 page:
       http://www.gnu.org/software/gnutls/ General help  using	GNU  software:
       http://www.gnu.org/gethelp/


COPYRIGHT
       Copyright (C) 2008 Free Software Foundation.
       Copying	and  distribution  of this file, with or without modification,
       are permitted in any medium  without  royalty  provided	the  copyright
       notice and this notice are preserved.

SEE ALSO
       The  full  documentation  for gnutls is maintained as a Texinfo manual.
       If the info and gnutls programs are properly installed  at  your  site,
       the command

	      info gnutls

       should give you access to the complete manual.



gnutls				     2.8.3	gnutls_x509_crt_list_verify(3)

NAME - SYNOPSIS - ARGUMENTS - DESCRIPTION - GNUTLS_CERT_INVALID - GNUTLS_CERT_REVOKED - 
RETURNS - REPORTING BUGS - COPYRIGHT - SEE ALSO -
All manual pages         All RFC pages
Common page
for gnutls_x509_crt_list_verify		 Other pages
for gnutls_x509_crt_list_verify		 More pages
containing gnutls_x509_crt_list_verify
A random manual page         All manual pages        All RFC pages